Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses --> Category: infos

paNews showpost Parameter Cross-Site Scripting Vulnerability Vulnerability Scan

Vulnerability Scan Summary
Checks version of paNews

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote web server contains a PHP application that is affected by a
cross-site scripting issue.

Description :

According to its banner, the remote host is running a version of
paNews that fails to sanitize input to the 'showpost' parameter of the
'comment.php' script before using it to generate dynamic web content.
By coercing an unsuspecting user into visiting a malicious website, an
attacker may be able to possibly steal credentials or execute
browser-side code.

See also :

Solution :

Unknown at this time.

Threat Level:

Low / CVSS Base Score : 2

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.