exploits , vulnerabilities , articles , Softbiz Photo Gallery Multiple Cross Site Scripting Vulnerabilities

Title	Softbiz Photo Gallery Multiple Cross Site Scripting Vulnerabilities
Published	2008-08-05-12:00AM
Updated	2008-08-05-12:00AM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	sl4xUz
Vulnerable	SoftBiz Photo Gallery 0
Not Vulnerable
Code	To exploit these issues, an attacker must entice an unsuspecting victim into following a malicious URI.The following example URIs are available: http://www.example.com/index.php?latest=[XSS] http://www.example.com/index.php?msg=[XSS] http://www.example.com/images.php?latest=[XSS] http://www.example.com/images.php?msg=[XSS] http://www.example.com/suggest_image.php?latest=[XSS] http://www.example.com/suggest_image.php?msg=[XSS] http://www.example.com/image_desc.php?latest=[XSS] http://www.example.com/image_desc.php?msg=[XSS] http://www.example.com/admin/index.php?msg=[XSS] http://www.example.com/admin/adminhome.php?msg=[XSS] http://www.example.com/admin/config.php?msg=[XSS] http://www.example.com/admin/changepassword.php?msg=[XSS] http://www.example.com/admin/cleanup.php?msg=[XSS] http://www.example.com/admin/browsecats.php?msg=[XSS] http://www.example.com/admin/images.php?msg=[XSS]
TXT

Vulnerabilities - newest 10 RSS | More

2008-11-22 KVIrc URI Handler Remote Command Execution Vulnerability
2008-11-22 NVIDIA Cg Toolkit Installer Insecure Temporary File Creation Vulnerability
2008-11-22 TkUsr Insecure Temporary File Creation Vulnerability
2008-11-21 TAU Tuning and Analysis Utilities Insecure Temporary File Creation Vulnerabilities
2008-11-21 Maildirsync Insecure Temporary File Creation Vulnerability
2008-11-21 TkMan Insecure Temporary File Creation Vulnerability
2008-11-21 Apple iPhone Configuration Web Utility for Windows Directory Traversal Vulnerability
2008-11-21 Cisco IOS and CatOS VLAN Trunking Protocol Packet Handling Denial Of Service Vulnerability
2008-11-21 vBulletin Visitor Messages Addon Comment Notification HTML Injection Vulnerability
2008-11-21 Apple Mac OS X CoreGraphics Multiple Memory Corruption Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Sat, 22 Nov 2008 22:39:35 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
blacksex hot sexy g gyyt Dru www.onion 7735 phpbb port mambo Remo all cartoo CMS is Fre Naked sout sesh 20060407-6 News Searc Exploits S pic+gerl news for c ews phpnuke sq TRISHA BOT news for c remote roo wbb 2.3.0 www,sex.co Crack Data MailSite Crack Data shopdbtes txx zoom media Dangerous malayalam xxx.cim 200 /compo Www sex an www.tube8 sexporno mambo Remo mambo Remo remote roo netbula cr play stati avizoonsex outl Dlk hot sexy g www.exploi mambo Remo smal girls Free gonzo