facebook facebook twitter rss

MAXSITE Cross-Site Scripting Vulnerability

Author: IrIsT Security & Researcher Team , Published: 04-02-2013
################################################################################
#
# Exploit Title : MAXSITE Cross-Site Scripting Vulnerability
#
# Author : IrIsT.Ir
#
# Discovered By : Beni_Vanda
#
# Home : http://IrIsT.Ir/forum
#
# Security Risk : Meduim
#
# Version : <=1.10
#
# Tested on : GNU/Linux (Ubuntu/Fedora) - BT - win7
#
# Dork : intext:Powered by MAXSITE 1.10
#
################################################################################
#
# Expl0iTs :
#
# http://target/.../?name=webboard&file=read&id=[Xss]
#
#
# D3mo :
#
# http://koratsite.nfe.go.th/?name=webboard&file=read&id=44[xss]
# http://phattalung.nfe.go.th/index.php?name=webboard&file=read&id=25[xss]
# http://trang.nfe.go.th/nfe15/index.php?name=webboard&file=read&id=8[xss]
# http://uthai.nfe.go.th/index.php?name=webboard&file=read&id=29[xss]
# http://tak.nfe.go.th/samngaolib/index.php?name=webboard&file=read&id=8[xss]
# http://kalasin.nfe.go.th/samchai/index.php?name=webboard&file=read&id=8[xss]
# http://sing.nfe.go.th/?name=webboard&file=read&id=59[xss]
# http://yaso.nfe.go.th/yasothon/?name=webboard&file=read&id=67[xss]
# http://www.ubonsci.com/index.php?name=webboard&file=read&id=19[xss]
#
################################################################################
#
# Gr33tz : Am!r ,C0dex ,B3HZ4D ,TaK.FaNaR ,Sukhoi SU-71 ,Mr.N!m@ ,esikley
#
# m3hdi ,F@rid ,Dr.Tofan ,Dj.TiniVini ,Noter ,Spy Developer ,one hacker alone
#
# Net.W0lf ,M4F1 ,joker_s ,Godfather ,Mr.CrazyWeb ,Mehran , IR Anonymous
#
# && All Members In Www.IrIsT.Ir/forum && All Turkish/Iranian/Kurdish Hackerz
#
################################################################################

Like us on Facebook :