joomladjice-xss.txt
Posted on 11 March 2009
############################################ # Joomla Djice Shoutbox v 1.0 <= Permanent XSS vulnerability # ############################################ - dork: inurl:"index.php?option=com_djiceshoutbox" The script is affected by Permanent XSS vulnerability, so yuo can put in bad java script code like: "><script>alert('XaDoS')</script> or '">><script>alert('XSS By XaDoS')</script> the XSS become permanent in every page of site! not critical damage but it's not funny.. [+] D3M0: http://www.djiceatwork.com contact me at xados @ hotmail . it www.securitycode.it
