CedStat 1.31 index.php hier Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the...

CedStat 1.31 Index.PHP Cross-Site Scripting Vulnerability

source: http://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CVE-2007-1020

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

CVE-2007-1020

CVE-2007-1020 affects CedStat 1.31, with an XSS flaw in index.php exploited via the hier parameter. The root cause is insufficient sanitization allowing remote script injection. Impact per CVSS 2.0: Partial confidentiality, integrity, and availability (base score 6.8). Connected documents provide...

CVE-2007-1020

Cross-site scripting XSS vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter...

CedStat 1.31 - index.php Cross-Site Scripting

CedStat 1.31 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

CedStat 1.31 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CedStat 1.31 - index.php?hier Cross-Site Scripting

CedStat 1.31 - index.php?hier Cross-Site Scripting source: https://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the...

CedStat 1.31 - 'index.php?hier' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the webserver process. This issue affects...

cedstat131-xss.txt

CedStat v1.31 XSS By : sn0oPy Risk : low site : http://cedtat.free.fr exploit : http://www.target.ma/cedstat/index.php?hier=%3C%68%31%3E%74%65%73%74%65%64%20%62%79%20%73%6E%30%6F%50%79%3C%2F%68%31%3E Dork : inurl:"/cedstat/" contact : [email protected] greetz : subzero,...

CedStat v1.31 XSS

CedStat v1.31 XSS By : sn0oPy Risk : low site : http://cedtat.free.fr exploit : http://www.target.ma/cedstat/index.php?hier=3C68313E74657374656420627920736E306F50793C2F68313E Dork : inurl:"/cedstat/" contact : [email protected] greetz : subzero, http://forums.avenir-geopolitique.net...