facebook facebook twitter rss

Powered By redframe.com - Stored XSS Vulnerability

Author: s0w , Published: 26-03-2015
######################################################################
[+] Title: Powered By redframe.com - Stored XSS Vulnerability
[+] Author: s0w
[+] Tested On Windows & Linux
[+] Date: 26/03/2015
[+] Type: Web Application
[+] Vendor Homepage: http://redframe.com/
[+] Vulnerability Info: The Exploit lies in the register accounts on-site process.
[+] Google Dork : powered by redframe.com
#######################################################################

[@] Exploit :
1- Browse application in browser ..
2- Go to register at the site ..
3- Put your code Xss code like alert exploiting in the bug
((As shown in the video)) ..

4- [p0c] XSS Pattern can be Used: "--><script>alert(/s0w/)</script>
5- Use this in Cookies,alerts, Or TrafficBots!! Have Fun :D

[+] Demo Video : http://youtu.be/OcpLjlUgn0s

[*] Demos [*]

http://redframe.com/
http://ifp3.com/

./Done
--------------------------
# Discovered By: s0w
# Contact: fb.me/s0w.egy
# Mail: s0wxp0c@gmail.com
-------------------------

~‎ Greetz‬ To Egyptian Shell team | Sec4ever ‪~

Like us on Facebook :