exploits , vulnerabilities , articles , Omnistar Live KB.PHP Cross-Site Scripting Vulnerability

Title	Omnistar Live KB.PHP Cross-Site Scripting Vulnerability
Published	2007-10-29-12:00AM
Updated	2007-11-15-12:38AM
Class	Input Validation Error
CVE	CVE-2007-5724
Remote	Yes
Local	No
Credit	Doz is credited with the discovery of this vulnerability.
Vulnerable	Omnistar Interactive Omnistar Live 0
Not Vulnerable
Code	An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI. The following proof-of-concept URIs are available:http://www.example.com/smartshop/users/kb.php?id=10002&category_id=XSS http://www.example.com/users/kb.php?category_id=XSS
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-03 Adobe Illustrator Encapsulated Postscript File Remote Buffer Overflow Vulnerability
• 2009-12-03 Adobe Flash Player APSB09-19 Multiple Unspecified Remote Vulnerabilities
• 2009-12-03 DAZ Studio Scripting Support Remote Command Execution Vulnerability
• 2009-12-03 Microsoft Active Directory LDAP Request Stack Exhaustion Denial Of Service Vulnerability
• 2009-12-03 phpMyFAQ 2.5.4 and Prior Multiple Cross Site Scripting Vulnerabilities
• 2009-12-02 Drupal Taxonomy Timer Module SQL Injection Vulnerability
• 2009-12-02 Pligg Cross Site Scripting And Request Forgery Remote Vulnerabilities
• 2009-12-02 SafeNet SoftRemote Policy File Handling Remote Buffer Overflow Vulnerabilities
• 2009-12-02 Autodesk 3ds Max Application Callbacks Arbitrary Command Execution Vulnerability
• 2009-12-02 Autodesk Softimage Scene TOC File Remote Code Execution Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Fri, 04 Dec 2009 11:19:15 +0000