Lucene search

K

SecurityvulnsSECURITYVULNS:DOC:13113

HistoryJun 13, 2006 - 12:00 a.m.

Invision Power Board XSS

2006-06-1300:00:00

vulners.com

10

*//Product :Invision Power Board
*//Version :2.1.6 and prior versions must be affected.

*//XSS=
http://localhost/forum/admin.php?phpinfo=<script>alert()</script>

*//You can steal only admins cookie.

*//www.spymastersnake.org
*//[email protected]