CedStat 1.31 Index.PHP Cross-Site Scripting Vulnerability

source: http://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CedStat 1.31 index.php hier Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

CVE-2007-1020

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

CVE-2007-1020

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

CVE-2007-1020

CVE-2007-1020 affects CedStat 1.31, with an XSS flaw in index.php exploited via the hier parameter. The root cause is insufficient sanitization allowing remote script injection. Impact per CVSS 2.0: Partial confidentiality, integrity, and availability (base score 6.8). Connected documents provide...

CedStat 1.31 - index.php Cross-Site Scripting

CedStat 1.31 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

CedStat 1.31 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CedStat 1.31 - index.php?hier Cross-Site Scripting

CedStat 1.31 - index.php?hier Cross-Site Scripting source: https://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the...

cedstat131-xss.txt

CedStat v1.31 XSS By : sn0oPy Risk : low site : http://cedtat.free.fr exploit : http://www.target.ma/cedstat/index.php?hier=%3C%68%31%3E%74%65%73%74%65%64%20%62%79%20%73%6E%30%6F%50%79%3C%2F%68%31%3E Dork : inurl:"/cedstat/" contact : [email protected] greetz : subzero,...

CedStat 1.31 - 'index.php?hier' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the webserver process. This issue affects...

CedStat v1.31 XSS

CedStat v1.31 XSS By : sn0oPy Risk : low site : http://cedtat.free.fr exploit : http://www.target.ma/cedstat/index.php?hier=3C68313E74657374656420627920736E306F50793C2F68313E Dork : inurl:"/cedstat/" contact : [email protected] greetz : subzero, http://forums.avenir-geopolitique.net...