Description - JavaScript Insertion Vulnerability in Bit 5 Blog
Cross Site Scripting found in Bit 5 Blog script.
- Exploit
- Available
- Solution
- Not available - check vendor's website
Arbitrary script code insertion is possible in BBcode.
Vulnerable Script: addcomment.php
Variable: $comment
Tag <a> isn't properly sanitized. This can be used to post arbitrary script code.
Order Source Code Analysis made by eVuln
Protect your site by source code test of your website or web application made by our team.The work will be done by experts in web security.