Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormD3v1lPACKETSTORM:91676
HistoryJul 13, 2010 - 12:00 a.m.

Saint Corporation Cross Site Scripting / HTML Injection

2010-07-1300:00:00
d3v1l
packetstormsecurity.com
32
JSON
`SAINT Corporation XSS Defacement  
Vulnerability Management, Assessment, Penetration Testing  
  
SAINT Corporation provides network security tools to financial, government and educational institutions around the world (SAINT customers). The SAINT® vulnerability assessment tools are recognized as industry leaders by top information-security organizations and publications.  
  
SAINT Corporation website vulnerable to Cross-site scripting,html injection and redirect.  
  
Proof of concept:  
  
http://www.saintcorporation.com/cgi-bin/archive.pl?cmd=search&list=HTML Injection  
  
http://www.saintcorporation.com/cgi-bin/archive.pl?cmd=index&list=XSS   
  
`
JSON