CVE-2008-1273

This exploit demonstrates a cross-site scripting (XSS) vulnerability in Imagevue 1.7 by injecting a script tag into the 'path' parameter of the upload.php file. The vulnerability arises due to insufficient input sanitization, allowing arbitrary JavaScript execution in the context of the affected site.

This exploit demonstrates a cross-site scripting (XSS) vulnerability in Imagevue 1.7 by injecting a script tag into the 'path' parameter of dirxml.php. The vulnerability arises due to insufficient input sanitization, allowing arbitrary JavaScript execution in the context of the affected site.

This exploit demonstrates a cross-site scripting (XSS) vulnerability in Imagevue 1.7 by injecting arbitrary JavaScript code via the 'path' parameter in popup.php. The PoC uses a simple alert-based payload to confirm the vulnerability.

The provided text describes a cross-site scripting (XSS) vulnerability in Imagevue 1.7, where user-supplied input is not properly sanitized. It includes a proof-of-concept URL demonstrating the XSS payload.