Unfixed XSS vulnerability at www.spymastersnake.org

Security researcher CCC, has submitted on 30/11/2007 a cross-site-scripting XSS vulnerability affecting www.spymastersnake.org, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/11/2007. It is currently...

ipb216.txt

//Product :Invision Power Board //Version :2.1.6 and prior versions must be affected. //XSS= http://localhost/forum/admin.php?phpinfo=alert //You can steal only admins cookie. //www.spymastersnake.org //[email protected]...