Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#1 Hexafind.php Non-Persistent XSS (<=v1.0.7.2)

open-accepted
nobody
None
3
2010-06-05
2010-06-05
hexon
No

In the File Connect4.php

Line 23:
echo "Admin Page = ",$url , "<br \&gt;";

Line 31 :
echo $url," Failed" , "<br \&gt;";

There is no filter to it so XSS codes can be executed

Discussion

  • hexon
    hexon
    2010-06-05

    • status: open --> open-accepted