Nwom topsites v3.0

2007-01-12T00:00:00
ID SECURITYVULNS:DOC:15692
Type securityvulns
Reporter Securityvulns
Modified 2007-01-12T00:00:00

Description

Nwom topsites v3.0 http://www.nwom.net

Vulnerable files:

Comment input. index.php

SQL info released on error: http://www.example.com/index.php?o='

XSS: http://www.example.com/index.php?o=<IMG%20SRC=javascript:alert(String.fromCharCode(88,83,83))>

  • Luny