PHP Labs proFile Dir URI Variable Cross-Site Scripting Vulnerability

ID SSV:79130
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


PHP Labs proFile is prone to a cross-site scripting vulnerability. As a result, attackers may embed hostile HTML and script code in a malicious link to the affected application. If the link is followed, the code may be rendered by the victim's browser in the context of the vulnerable site.

Exploitation could allow theft of cookie-based authentication credentials or other attacks.[XSS]