PHPDug 2.0.0 - Cross Site Scripting Vulnerability

PHPDug 2.0.0 跨站脚本漏洞 存在漏洞文件： upcoming.php ----省略部分代码 $GET'id'和$GET'i'是一样的 ifisset$GET'id' $GET'i' = $GET'id'; elseifisset$GET'i' $GET'id' = $GET'i'; ----省略部分代码 $page = new HtmlTemplate "templates/" . $config'tplname' . "/catnoresults.html"; ----省略部分代码 $page-SetLoop 'PAGES',...

PHPDug 2.0.0 - Cross-Site Scripting

PHPDug 2.0.0 - Cross-Site Scripting ======================================================================================== | Title : PHPDug version 2.0.0 Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi -...