Re: XSS vulnerability in Expression CMS

看板Bugtraq作者時間15年前 (2010/12/18 02:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串3/3 (看更多)
: Vulnerability ID: HTB22618 : Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_expression_cms_1.html : Product: Expression : Vendor: Backbone Technology ( http://www.backbonetechnology.com ) : Vulnerable Version: Current at 18.09.2010 and Probably Prior Versions How do you know you tested a current version? The vendor web site does not list a current version on the page: http://www.backbonetechnology.com/expression/ They do not appear to offer a demo, and it seemingly requires a consultation to purchase. They do list who is running it: http://www.backbonetechnology.com/portfolio/ Did you test one of their customers' live sites to find this vulnerability? If so, again, how do you not know the version you tested?
更多 jericho. 的文章
文章代碼(AID): #1D2wLYTe (Bugtraq)
更多 jericho. 的文章
文章代碼(AID): #1D2wLYTe (Bugtraq)