Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12180
HistoryApr 12, 2006 - 12:00 a.m.

Manila <= 9.5 - XSS Vulnerabilities

2006-04-1200:00:00
vulners.com
7

Manila <= 9.5 - XSS Vulnerabilities

Software: Manila
Version: <= 9.5
Type: Cross Side Scripting Vulnerability
Date: Die Apr 11 21:33:54 CEST 2006
Vendor: UserLand Software
Page: http://manila.userland.com/
Risc: Middle

credits:

d4igoro - d4igoro[at]gmail[dot]com
http://d4igoro.blogspot.com/

vulnerability:

http://[target]/discuss/msgReader$1?mode=[XSS]
http://[target]/newsItems/viewDepartment$[XSS]

solution:

There isn't a solution yet.

notes:

At the time of posting no known official patches are available for this vulnerability.
The vendor has been informed.