CVE-2006-5830

This exploit demonstrates a reflected XSS vulnerability in All In One Control Panel (AIOCP) by injecting a malicious script via the 'order_field' parameter in 'cp_users_online.php'. The script steals cookie-based authentication credentials when executed in the context of the application.

This exploit demonstrates a reflected XSS vulnerability in All In One Control Panel (AIOCP) by injecting a malicious script via the 'order_field' parameter. The script executes in the context of the application, potentially stealing cookie-based authentication credentials.

This exploit demonstrates a reflected XSS vulnerability in All In One Control Panel (AIOCP) by injecting a malicious script via the 'orderdir' parameter. The script executes in the context of the application, potentially stealing cookie-based authentication credentials.

This exploit demonstrates multiple reflected XSS vulnerabilities in All In One Control Panel (AIOCP) by injecting malicious JavaScript via unsanitized input parameters. The PoC uses crafted URLs to execute arbitrary script code in the context of the application, potentially stealing cookie-based authentication credentials.

This exploit demonstrates a reflected XSS vulnerability in All In One Control Panel (AIOCP) by injecting a malicious script via the 'choosed_language' parameter. The script executes in the context of the application, potentially stealing cookie-based authentication credentials.