cross site scripting bug in dnslook.html

**jwiens** · 11-22-2006 07:47 AM

Just an fyi so folks know they should update. Not a super huge vulnerability but still potentially a problem (for a long and detailed summary of what XSS is and why it matters, see my old post on the subject).

http://www.securityfocus.com/bid/21142

Security focus says no solution is out, however Secunia claims that you can update to version 10.9.0 R75 to be secure. I imagine they've got it right and since it looks like a fix is available I figure folks should be aware so they can patch.

**pjman** · 11-22-2006 05:49 PM

I don't even bother looking at anything Security focus puts out. Secunia is a much better source.

**deanstev** · 11-27-2006 02:14 AM

Wondering if these two security exploits have been fixed?

http://www.securityfocus.com/archive.../30/0/threaded
http://www.securityfocus.com/archive.../30/0/threaded

LinkBack

Thread Tools

cross site scripting bug in dnslook.html

Secunia is always on top of it.

Cpanel cross site scripting vulnerability

CPanel 11 Beta Multiple Cross-Site Scripting

Cross Site Scripting

new phpMyAdmin Exploits/Cross Site Scripting

PHP Session ID Cross Site Scripting