TUCoPS :: Web :: Apps :: b06-1686.htm

Linpha 1.1.0 - XSS Vulnerabilities
Linpha 1.1.0 - XSS Vulnerabilities
Linpha 1.1.0 - XSS Vulnerabilities



Linpha 1.1.0 - XSS Vulnerabilities
--------------------------------------------------------
Software: Linpha
Version: 1.1.0
Type: Cross Site Scripting Vulnerability
Date: Mon Apr 17 22:59:39 CEST 2006
Vendor: The LinPHA developers
Page: http://linpha.sourceforge.net/ 
Risc: Low

credits:
----------------------------
d4igoro - d4igoro[at]gmail[dot]com
http://d4igoro.blogspot.com/ 
Greetz: karambole

vulnerability:
----------------------------
http://[target]/plugins/stats/stats_view.php?date_from=[XSS] 
http://[target]/plugins/stats/stats_view.php?date_to=[XSS] 
http://[target]/plugins/stats/stats_view.php?date=[XSS] 

notes:
----------------------------
The vendor has been informed.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH