-
File Added: XSS_agora_002.JPG.
2008-01-03 10:07:08 UTC by meleagro
-
Hi,
I am Daniel Medianero( dmedianero@gmail.com ) from http://m313.es.kz
I have discovered two variables that are vulnerable to XSS( A1 - OWASP).
In the page admin_user.php the variables userid and pattern.
Introducing unexpectes values is able to inyect html code.
I send us two evidences:
1) In the first I inyected a script with shows the cookie of visitor.
2) In the second I...
2008-01-03 10:06:50 UTC by meleagro
-
mdruilhe committed patchset 2147 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2007-06-20 13:56:39 UTC by mdruilhe
-
mdruilhe committed patchset 2146 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 23:04:38 UTC by mdruilhe
-
mdruilhe committed patchset 2145 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:55:58 UTC by mdruilhe
-
mdruilhe committed patchset 2144 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:55:02 UTC by mdruilhe
-
mdruilhe committed patchset 2143 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:40:27 UTC by mdruilhe
-
mdruilhe committed patchset 2142 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:37:15 UTC by mdruilhe
-
mdruilhe committed patchset 2141 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:35:52 UTC by mdruilhe
-
mdruilhe committed patchset 2140 of module w-agora4 to the w-agora CVS repository, changing 1 files.
2006-07-11 21:31:32 UTC by mdruilhe
