- ---------------------------------------------------- Class : input Validation Error Risk : Due to the simplicity of the attack and the number of sites that run module books the risk is classified as Medium to High. URL: http://pn-mod-books.sourceforge.net - ---------------------------------------------------- This Books module version v0.54 is running as a Mutant (PN 0.64) This Books module version v0.6 is running as a Rogue (PN 0.7) - ---------------------------------------------------- Exploit: http://servernuke/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script| Change | x <> - ------------------------------------------------------- Programmer of Books module receives a copy this report. - -------------------------------------------------------- Salu2 Pistone - - -------- http://www.gauchohack.com.ar http://www.hackindex.org
This archive was generated by hypermail 2b30 : Thu Oct 03 2002 - 20:42:58 PDT