phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

May 24, 2015 007admin Leave a comment

Posted by Jing Wang on May 24

*phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities*

Exploit Title: phpwind v8.7 goto.php? &url Parameter XSS Security
Vulnerabilities
Product: phpwind
Vendor: phpwind
Vulnerable Versions: v8.7
Tested Version: v8.7
Advisory Publication: May 25, 2015
Latest Update: May 25, 2015
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: *
Impact CVSS Severity (version 2.0):
CVSS v2 Base Score: 4.3 (MEDIUM)…

007 Software

phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

Leave a Reply Cancel reply

Software and Security Information