lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: Wed Apr 12 02:19:33 2006
From: zeus.olimpusklan at gmail.com (0o_zeus_o0 elitemexico.org)
Subject: Autogallery Multiple Cross-Site Scripting
	Vulnerabilitie

###########################################################################
# Advisory #12 Title: Autogallery Multiple Cross-Site Scripting
Vulnerabilitie
#
#
# Author: 0o_zeus_o0 ( Arturo Z. )
# Contact: zeus@...sdelared.com
# Website: www.elitemexico.org
# Date: 11/04/06
# Risk: Medium
# Vendor Url: http://gallery.mrvanes.com/about.html
# Affected Software: Autogallery v0.41
# Non Affected:
#
#Info:
##################################################################
#this bug causing the robbery of cookie
#
#Example XSS:
##################################################################
#
#http://www.vuln.com/[path]/index.php?show=misc&pic=">[XSS]
#
#http://www.vuln.com/[path]/index.php?show=">[XSS]
#
##################################################################
#
#Solution:
##################################################################
#
#
#VULNERABLE VERSIONS
##################################################################
#v0.41
#
##################################################################
#Contact information
#0o_zeus_o0
#zeus@...sdelared.com
#www.elitemexico.org
##################################################################
#greetz: lady fire,Mi beba, olimpus klan team and elitemexico
#
# original advisorie: http://www.elitemexico.org/12.txt
##################################################################
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060411/f663becf/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ