Diesel Job Site forgot.php Cross-Site Scripting

2006-08-23T00:00:00
ID SECURITYVULNS:DOC:14006
Type securityvulns
Reporter Securityvulns
Modified 2006-08-23T00:00:00

Description

Night_Warrior<Kurdish Hacker>

night_warrior-[at]hotmail.com

Diesel Job Site forgot.php Cross-Site Scripting Vulnerability

Contact : night_warrior-[at]hotmail.com

hompage : www.dieselscripts.com

http://www.example.com/[Script Path]/jobseekers/forgot.php?uname=[XSS]&fu=Submit http://www.example.com/[Script Path]/jobseekers/forgot.php?SEmail=[XSS]&fm=Submit