TUCoPS :: Web :: Apps :: b06-1544.htm

Manila <= 9.5 - XSS Vulnerabilities
Manila <= 9.5 - XSS Vulnerabilities
Manila <= 9.5 - XSS Vulnerabilities



Manila <= 9.5 - XSS Vulnerabilities
--------------------------------------------------------
Software: Manila
Version: <= 9.5
Type: Cross Side Scripting Vulnerability
Date: Die Apr 11 21:33:54 CEST 2006
Vendor: UserLand Software
Page: http://manila.userland.com/ 
Risc: Middle

credits:
----------------------------
d4igoro - d4igoro[at]gmail[dot]com
http://d4igoro.blogspot.com/ 

vulnerability:
----------------------------
http://[target]/discuss/msgReader$1?mode=[XSS] 
http://[target]/newsItems/viewDepartment$[XSS] 

solution:
----------------------------
There isn't a solution yet.

notes:
----------------------------
At the time of posting no known official patches are available for this vulnerability.
The vendor has been informed.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH