|
Family: CGI abuses : XSS --> Category: attack
CMSimple index.php search XSS Vulnerability Scan
Vulnerability Scan Summary Checks for XSS in search field in index.php
Detailed Explanation for this Vulnerability Test
The remote host is running CMSimple, a CMS written in PHP.
The version of CMSimple installed on the remote host is prone to
cross-site scripting attacks due to its failure to sanitize
user-supplied input to the search field.
See also : http://lostmon.blogspot.com/2005/07/cmsimple-search-variable-xss.html
Solution : See http://www.cmsimple.dk/forum/viewtopic.php?t=2470
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|