[KAPDA::#37] - CoMoblog XSS
- From: farhadkey@xxxxxxxx
- Date: 23 Mar 2006 10:26:37 -0000
[KAPDA::#37] - CoMoblog XSS
KAPDA New advisory
CoMoblog XSS
------------------------------------------
Bug:
http://victim/path/img.php?i=[CODE]
Vendor:
http://www.easymoblog.org/
Vulnerable:
CoMoblog 1.1
------------------------------------------
------------------------------------------
Orginal Advisory :
http://www.kapda.ir/advisory-301.html
Credit :
FarhadKey {AT} kapda [d0t] ir
KAPDA - Security Science Researchers Institute
http://www.kapda.ir
- Prev by Date: [ GLSA 200603-21 ] Sendmail: Race condition in the handling of asynchronous signals
- Next by Date: PasswordSafe 3.0 weak random number generator allows key recovery attack
- Previous by thread: [ GLSA 200603-21 ] Sendmail: Race condition in the handling of asynchronous signals
- Next by thread: PasswordSafe 3.0 weak random number generator allows key recovery attack
- Index(es):
