myBloggie 2.1.1

2005-04-16T00:00:00
ID SECURITYVULNS:DOC:8348
Type securityvulns
Reporter Securityvulns
Modified 2005-04-16T00:00:00

Description

myBloggie 2.1.1

Vendor: http://www.mywebland.com/

When the comments are posted there's no check for "<script>" tags allowing a script injection attack. Proof of Concept <script>alert("Hi world!");</script>

..-= Dominus_Vis =-.. [Infektion Group] Brazil