DESCRIPTION
Limbas 4.3.36.1319 is vulnerable to Cross Site Scripting (XSS) LIMBAS ( http://www.limbas.org/ ) - 4.3.36.1319
PROOF OF CONCEMT
UPDATE/up_2_0.php the page reflexed with the XSS code
EXAMPLE PAYLOAD
1'"()&%<ScRiPt >9M2m(9617)</ScRiPt>
DETAILS XSS
Cross-site Scripting (XSS) refers to a client-side code injection attack wherein an attacker can execute malicious scripts into a legitimate website or web application. XSS occurs when a web application makes use of unvalidated or unencoded user input within the output it generates.