XSS in Tek-Tips Forum

2003-08-14T00:00:00
ID SECURITYVULNS:DOC:4986
Type securityvulns
Reporter Securityvulns
Modified 2003-08-14T00:00:00

Description

hello 3APA3A

ZUD SECURITY TEAM PRESENT

##########################

bug found by nimber

Email : nimber@designer.ru

Site: www.zudteam.org

HomePage: www.nimber.plux.ru #

11.08.2003

Name: Tek-Tips Forum Web Site: www.tek-tips.com Bug: XSS Vulnerability. Exploit(exaple): http://www.server.com/guserinfo.cfm?member=<script>alert(document.cookie);</script>

Gr33tZ :All Russian Security Project

 &#40;0_0&#40;0_0&#41;0_0&#41;
  /.&#92;/ | &#92;/. &#92;
  &#40; &#41;&#40;   &#41;&#40;  &#41;