|
HSC Research Group -
Advisories
|
|
Written by Hackers Center
|
|
Wednesday, 31 May 2006 13:12 |
 Coranto"s add-on SearchNews 3.2 temporary XSS
Coranto Wed Site: coranto.gweilo.org
All known versions of this add-on are variable
Risk level: Low - Mid
Coranto is a popular content managing system for web sites and SearchNews 3.2 is its most popular add-on for the management suite. User input is not properly sanitized before being returned resulting in temporary XSS.
|
