Home / vulnerabilitiesPDF  

rpm2html-xss.txt

Posted on 14 June 2007
Source : packetstormsecurity.org Link

 

----------------------------------------------------------------------|
My Name: Vladiii |
My Country: Romania |
My Site: http://www.rstzone.net |
My Team: I hope to enter in RST-Crew :) |
Contact me: -------- |
Special Shoutz: kw3rln (fluffy_bunny),splo1t, tot_zeu, |
flo_flow_supremacy, mozi2weed, |
& all RST-crew & ZeroHack members |
----------------------------------------------------------------------|
Vulnerable code: rpm2html 1.6 |
Download it from: http://public.www.planetmirror.com/pub/rpm2html/ |
----------------------------------------------------------------------|
XSS Vulnerability in search function :)
Details: we can change the query in URL with <script>alert('xss')</script>
and will appear a Message Box with our code :)


POC !

vladiii 2007

---------------------------------
Be a better Globetrotter. Get better travel answers from someone who knows.
Yahoo! Answers - Check it out.

---------------------------------
Boardwalk for $500? In 2007? Ha!
Play Monopoly Here and Now (it's updated for today's economy) at Yahoo! Games.

 

TOP