lists.openwall.net   lists  /  announce  john-users  owl-users  popa3d-users  /  xvendor  oss-security  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4 
Open Source and information security mailing list archives
 
This website is powered by Openwall GNU/*/Linux security-enhanced OS
[<prev] [next>] [month] [year] [list] 
Date: 3 Nov 2006 15:15:47 -0000
From: m-0-t@...mail.com
To: bugtraq@...urityfocus.com
Subject: XSS in script Mobile

Discovered : SwEET-DeViL  & HaCkEr sUn 
Product:  http://www.ac4p.com
tame : AL-garnei

::::::::::::::::::::::::::::::::::::::::::#######
/1/

index.php  


http://www.site.com/path/index.php?Bloks={XSS}
 

http://www.site.com/path/index.php?Newnews={XSS}


http://www.site.com/path/index.php?lBlok={XSS}


http://www.site.com/path/index.php?foooot={XSS}
#########################################################
/2/

 MobileNews.php

http://www.site.com/path/MobileNews.php?Newnews={XSS}

http://www.site.com/path/MobileNews.php?newmsgs={XSS}

http://www.site.com/path/MobileNews.php?Bloks={XSS}
##########################################################
/3/

 polls.php 


http://www.site.com/path/polls.php?Newnews={XSS}
#######################################################
/4/

 send.php 

http://www.site.com/path/send.php?cats={XSS}

##########################################################
/5/

 up.php 

http://www.site.com/path/up.php?footer={XSS}

##########################################################
/6/

file cp in index.php

http://www.site.com/path/cp/index.php?pagenav={XSS}
##########################################################
Greetings and thanks to all of our friends conductive 
vip hacker and electronic

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux