phpWebSite XSS Vulnerability

2002-10-03T00:00:00
ID SECURITYVULNS:DOC:3566
Type securityvulns
Reporter Securityvulns
Modified 2002-10-03T00:00:00

Description

.:: phpWebSite XSS Vulnerability.

A Cross-Site Scripting vulnerability found in phpWebSite that would allow attackers to inject script codes into the page and executing it on the clients browser as if it were provided by the site.

• Vulnerable systems:

- phpWebSite 0.8.3, maybe other versions.

• Example:

article.php?sid="><Img Src=javascript:alert(document.cookie)><Img Src="