News Feed
Jobs Feed
Sections




News Archive
feed this:

Secubos.com:
Cross-Site Scripting Vulnerability in phpFaber
by Chris Cornutt October 31, 2006 @ 11:17:00

A cross-site scripting bug has been announced on the Secuobs.com website for the phpFaber content management system.

Vigilon has reported a vulnerability in phpFaber CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed via the URL in cms_images/js/htmlarea/htmlarea.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

For complete information on the issue, check out this report.

0 comments voice your opinion now!
security issue crosssite scripting xss phpfaber security issue crosssite scripting xss phpfaber



Community Events









Don't see your event here?
Let us know!

podcast zendframework2 community code api language development opinion composer release phpunit introduction interview database framework example testing tool object unittest

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework