- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 25051
- Проверка EDB
-
- Пройдено
- Автор
- POZNAN SUPERCOMPUTING
- Тип уязвимости
- WEBAPPS
- Платформа
- CGI
- CVE
- cve-2004-1418
- Дата публикации
- 2004-12-23
Код:
source: https://www.securityfocus.com/bid/12097/info
WPKontakt is reported prone to a potential script execution vulnerability. It is reported that this issue may allow remote attackers to execute arbitrary script code on a vulnerable computer, which may lead to various attacks. Arbitrary script code may be executed on a target system in the event that a specially message containing a specially malformed email address containing a JavaScript URI is received.
test@"style="background-image:url(javascript:alert(%22You%20are%20owned!%22>))".wp.pl- Источник
- www.exploit-db.com