astrocam-xss.txt

astrocam-xss.txt: Posted May 1, 2008; Authored by Steffen Wendzel | Site wendzel.de; AstroCam versions 2.5.0 through 2.7.3 suffer from a cross site scripting vulnerability.; tags | advisory, xss; SHA-256 | f0d70dc471b487e095c1c1b658f70d9feacc28f774495582874721a4dffe478d; Download | Favorite | View

astrocam-xss.txt

XSS in AstroCam 2.5.x/2.6.x/2.7.[123]
-------------------------------------

Software:  AstroCam
Vulnerable:  2.5.0-2.7.3
Not vulnerable:  2.7.4
Class:    Input Validation Error
Remote:   Yes
Local:    Yes
Credit:   This issue was announced by the vendor.
Anouncement:  http://wendzel.de/?sub=showpost&blogid=5&postid=56
Project URL:  http://wendzel.de/?sub=softw&ssub=acam

Description:

It was possibly to execute HTML embedded script code
in pic.php.

Patch/URL can be found here:
http://sourceforge.net/project/showfiles.php?group_id=85523

regards
Steffen Wendzel

-- 
http://www.wendzel.de/?sub=steffen

Top Authors In Last 30 Days

Red Hat 308 files
Ubuntu 67 files
Debian 24 files
Gentoo 8 files
Google Security Research 7 files
LiquidWorm 6 files
Apple 5 files
Jann Horn 3 files
Spencer McIntyre 3 files
Milad Karimi 3 files

File Archives

Systems

AIX (430)
Apple (2,133)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,177)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,160)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,495)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,025)
UNIX (9,482)
UnixWare (188)
Windows (6,786)
Other

astrocam-xss.txt

astrocam-xss.txt

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

astrocam-xss.txt

Share This

astrocam-xss.txt

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems