Test Kennung:	1.3.6.1.4.1.25623.1.0.14368
Kategorie:	CGI abuses
Titel:	PHP-CSL Cross Site Scripting Vulnerability
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is running PHP Code Snippet Library (PHP-CSL), a library written in PHP. The remote version of this software is vulnerable to a cross-site scripting attack. An attacker can exploit it by compromising the values of the parameter cat_select in index.php. This can be used to take advantage of the trust between a client and server allowing the malicious user to execute malicious JavaScript on the client's machine. Solution : Upgrade to the latest version of this software Risk factor: Medium
Querverweis:	BugTraq ID: 11038 Common Vulnerability Exposure (CVE) ID: CVE-2004-1746 http://www.securityfocus.com/bid/11038 Bugtraq: 20040824 PHP Code Snippet Library Multiple Cross-Site Scripting (XSS) (Google Search) http://marc.info/?l=bugtraq&m=109340580218818&w=2 http://nikyt0x.webcindario.com/0001.txt http://secunia.com/advisories/12370 XForce ISS Database: snippet-index-xss(17108) https://exchange.xforce.ibmcloud.com/vulnerabilities/17108
Copyright	This script is Copyright (C) 2004 Tenable Network Security

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.