facebook facebook twitter rss

Photo Sharing Script Xss Vulnerability

Author: indoushka , Published: 25-10-2014
Photo Sharing Script Xss Vulnerability
====================================
Author : indoushka
Vondor : www.p30vel.ir
Dork : Copyright © 2011 Photo Sharing Script Nulled By P30vel.ir Powered by Free PHP Script
======================================
Cross site scripting (verified) :

This vulnerability affects /upload/signup.
Discovered by: Scripting (XSS.script).
Attack details
URL encoded POST input password was set to 711%24%24w0rD" onmouseover=prompt(771818860) bad="
The input is reflected inside a tag parameter between double quotes.

Like us on Facebook :