Saint Corporation Cross Site Scripting / HTML Injection

2010-07-13T00:00:00
ID PACKETSTORM:91676
Type packetstorm
Reporter d3v1l
Modified 2010-07-13T00:00:00

Description

                                        
                                            `SAINT Corporation XSS Defacement  
Vulnerability Management, Assessment, Penetration Testing  
  
SAINT Corporation provides network security tools to financial, government and educational institutions around the world (SAINT customers). The SAINT® vulnerability assessment tools are recognized as industry leaders by top information-security organizations and publications.  
  
SAINT Corporation website vulnerable to Cross-site scripting,html injection and redirect.  
  
Proof of concept:  
  
http://www.saintcorporation.com/cgi-bin/archive.pl?cmd=search&list=HTML Injection  
  
http://www.saintcorporation.com/cgi-bin/archive.pl?cmd=index&list=XSS   
  
`