7 lines
No EOL
454 B
Text
7 lines
No EOL
454 B
Text
source: http://www.securityfocus.com/bid/8417/info
|
|
|
|
It has been reported that a html injection issue exists in the Clickcess ChitChat.NET discussion forum software. The vulnerability is reported to be present in the Name and Topic Title text boxes. The problem may allow a remote attacker to inject malicious HTML and script code into the website.
|
|
|
|
This vulerability may lead to cookie-based credential theft.
|
|
|
|
Name: <script>alert(Zone-h1)</script> |