NexusPHP ipsearch.php file cross-site scripting vulnerability
NexusPHP is a resource sharing community solution written in PHP developed by the Nexus team in China. A cross-site scripting vulnerability exists in NexusPHP version 1.5.beta5.20120707. A remote attacker can exploit this vulnerability by sending PATHINFO to the ipsearch.php file to obtain the...