about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive Talk

exploits , vulnerabilities , articles , Omnistar Live KB.PHP Cross-Site Scripting Vulnerability


Title Omnistar Live KB.PHP Cross-Site Scripting Vulnerability
Published 2007-10-29-12:00AM
Updated 2007-11-15-12:38AM
Class Input Validation Error
CVE   CVE-2007-5724
Remote  Yes
Local  No
Credit  Doz is credited with the discovery of this vulnerability.
Vulnerable  Omnistar Interactive Omnistar Live 0
Not Vulnerable  
Code  An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.

The following proof-of-concept URIs are available:http://www.example.com/smartshop/users/kb.php?id=10002&category_id=XSS
http://www.example.com/users/kb.php?category_id=XSS
TXT  t3xt 1t!


Advertising

Copyright 2007, SecurityDot
Fri, 04 Dec 2009 11:19:15 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
php-nuke 2 psxf888.co www.zhmf51 Crack Data bvnvb WWW.SEX.WO www.zhuime desknow free sex.c inc Sex a boy sexymovis. evo Www.Asian WWW.XV& www.bdgsj. B...iles/1 news for c www.daxin. kproxy.com SecurityDo 200 /compo microsoft m...b.co.k www.lq77.c www.quncn. www.06388. Www.fuck m call of du PHPMyAdmin 9hab agadi Indian cin VEDIOSXE webSPELL_s sex massag Searching www.zzsany www.sex.bd www.asian Crack Data t57t sri lanka .youtub.co Searching Porn movei Trisha Sex 200 /compo ntop www.sss001 Jeni