Exploit ACS Blog 0.8/0.9/1.0/1.1 - 'Name' HTML Injection

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
25313
Проверка EDB
  1. Пройдено
Автор
DAN CROWLEY
Тип уязвимости
WEBAPPS
Платформа
ASP
CVE
cve-2005-0945
Дата публикации
2005-03-28
Код:
source: https://www.securityfocus.com/bid/12921/info

ACS Blog is affected by an HTML injection vulnerability.

The issue affects the 'Name' field and may be exploited to execute arbitrary HTML and script code in the browser of the user when the user views an affected Web page. 

Name: <script>alert("xss");</script>
 
Источник
www.exploit-db.com

Похожие темы