Joomla! Component com_qpersonel - Cross-Site Scripting
Author: Pyske
type: webapps
platform: php
port:
date_added: 2009-12-26
date_updated:
verified: 1
codes: OSVDB-61354;CVE-2009-4575
tags:
aliases:
screenshot_url:
application_url:
< ------------------- header data start ------------------- >
###########################################################################
Joomla Component com_qpersonel Cross Site Scripting Vulnerabilities
###########################################################################
# Author : Pyske
# Greetz : Fl0riX , M-K-A , F0RTS3V3N , 3KB3R ,BARCOD3 and ALL Cyber-Warrior
# Name : com_qpersonel
# Bug Type : Cross Site Scripting
# Infection : Yönetici ve User cookiekleri calinabilir.
# Bug Fix Advice : Zararlı karakterler filtrelenmelidir.
# Demo Vuln. : http://server/j15x/index.php?option=com_qpersonel&task=sirala&personel_sira=[XSS CODE]
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
">
< -- bug code end of -- >