Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: CGI abuses : XSS --> Category: attack

CMSimple index.php search XSS Vulnerability Scan


Vulnerability Scan Summary
Checks for XSS in search field in index.php

Detailed Explanation for this Vulnerability Test

The remote host is running CMSimple, a CMS written in PHP.

The version of CMSimple installed on the remote host is prone to
cross-site scripting attacks due to its failure to sanitize
user-supplied input to the search field.

See also : http://lostmon.blogspot.com/2005/07/cmsimple-search-variable-xss.html
Solution : See http://www.cmsimple.dk/forum/viewtopic.php?t=2470
Threat Level: Low

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.