Create Account
Sign In

Survey ServiceCSS Code Compressor (Minifier)Javascript Code Compressor (Minifier)Userbar Generator (for forums)Signature Maker (for forums) onlineAvatar Generator for forums (Personal Image)Stylish Text GeneratorAJAX Chat serviceGoogle Maps code GeneratorComments Module
You are here: Webestools > Forum > Our Website > A Bug > XSS Vulnerability in the "Simple PHP Forum" script

XSS Vulnerability in the "Simple PHP Forum" script

To create and answer topics, you must to be logged.
Pages: 1
Author Message
Bobo2040
12/05/2014 at 11:09:59
Bobo2040
Member
 Hello,
I found a XSS Vulnerability in the Simple PHP Forum made by "youbane"
The UserInput in the Title gets not Escapet so that somebody can deopsit Javascript Code...
http://www.webestools.com/ftp/ybouane/scripts_tutorials/php/forum/forum/index.php

Sry for bad english iam german :)

Bye
eufrat
02/01/2015 at 06:40:48
eufrat
Member
 Go through online you can get best official facts about flash design or else you make contact with any best web Development Company because there is you can solve all kind of web site hosting related issues.

adil
ybouane
04/01/2015 at 02:51:24
ybouane
Admin
 It is not a XSS vulnerability because it is a field that only the admin should be able to modify. It is actually made on purpose to give the admin the possibility to add Javascript / HTML in the description field
Image
Pages: 1