Lucene search
SecurityvulnsSECURITYVULNS:DOC:17644HistoryJul 31, 2007 - 12:00 a.m.
[Aria-security] itcms 0.2 Cross-site Scripting (XSS)
2007-07-3100:00:00
vulners.com
22
[Aria-Security]
Tilte: itcms 0.2 Cross-site Scripting (XSS)
<www.Aria-security.Com For English >
<www.Aria-Security.net For Persian >
< Author: You_You >
< Software: itcms >
< Site Script:http://sourceforge.net/projects/itcms/ >
proof Of Concept :
local/[path]/lang-en.php?wndtitle=[Xss-script]
local/[path]/menu-ed.php?wndtitle=[Xss-script]
local/[path]/titletext-ed.php?wndtitle=[Xss-script]