Categories

Applications (151)
Blogs (3)
Content Management (101)
Customer Relationship (2)
Discussion Boards (19)
E-Commerce (8)
General Purpose Directories (1)
Image Galleries (15)
Mailing Lists (1)
Tips (3)
Vulnerabilities (249)
Access Bypass (42)
Cross Site Scripting (94)
Denial Of Service (2)
File Inclusion (40)
Information Disclosure (13)
Privilege Escalation (2)
Remote Command Execution (12)
Session Hijacking (1)
SQL Injection (84)

Archive for the 'General Purpose Directories' Category

Indexu Multiple XSS

Published by CS Lee January 18th, 2007 in Cross Site Scripting and General Purpose Directories.

Application: Indexu
Version: 5.x or below
Vendor’s URL: http://www.nicecoder.com/
Bug type: Cross Site Scripting
Risk: High

Solution:
- Edit the source code to ensure that input is properly sanitised
- Application upgrade to latest version
- Vendor patch

About

You are currently browsing the Exabytes Security Portal weblog archives for the General Purpose Directories category.

Longer entries are truncated. Click the headline of an entry to read it in its entirety.

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional