<<< Date Index >>>     <<< Thread Index >>>

BJ Webring XSS



* BJ Webring XSS

* By : sn0oPy

* Risk : high


 
* exploit :

just inject any script on the add link menu : 
http://www.target.ma/webring/formulaire.php

Dork :

intitle:".: index webring :."


* contact : sn0oPy@xxxxxxxxxxxxxxxxxxxxxxx

* greetz : [subzero], http://forums.avenir-geopolitique.net.

reference : http://forums.avenir-geopolitique.net/viewtopic.php?t=2707