XSS and PHP Code Insertion Vulnerabilities in QLnews
Summary for XSS and PHP Code Insertion Vulnerabilities in QLnews
- Vulnerability
- XSS and PHP Code Insertion Vulnerabilities in QLnews
- Discovered
- 2006.03.30
- Last Update
- 2006.04.09 Exploitation code published
- ID
- EV0113
- CVE
- CVE-2006-1575 CVE-2006-1576
- Risk Level
- high
- Type
- Multiple Vulnerabilities
- Status
- Unpatched. No reply from developer(s)
- Vendor
- n/a
- Vulnerable Software
- QLnews
- Version
- 1.2
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Order Source Code Review made by eVuln team
Protect against attacks by source code audit of your website done by Aliaksandr Hartsuyeu.The task will be done by experts in website security.