Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Sat, 19 Dec 2015 08:47:01 +0000
From: CSW Research Lab <>
To: "" <>, 
	"" <>
Subject: Cross site vulnerability (XSS) in OcPortal CMS 9.0.20

Hi all

can you please assign CVE for this issue ?

Proof of Concept URL
[+] http://localhost/ocportal
[image: XSS on Data_emotions_browser.PNG]

Vulnerable Parameter(s):
[+]  Field_Name

Credits & Authors
Arjun Basnet from Cyber Security Works Pvt. Ltd. (

Content of type "text/html" skipped

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ