PHP-Pastebin Cross Site Scripting

2012.05.02
Credit: L3b-r1'z
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79
Dork: allintext: \"Php-Pastebin V.2\"

########################### # Author : L3b-r1'z # Date : 2012-April-30 # Title : Php-Pastebin Stored XSS Vulnerability # Email : L3br1z@gmail.com # Site : Sec4Ever.com # Google Dork : allintext: "Php-Pastebin V.2" ########################### [+] P0c : Add New Paste put in the Paste Name <script>alert("L3br1z");</script> You Will See The Alert :) Proud To Be Lebanese Thx To All My Friends . -- L3b-r1'z . proud to be lebanese :) Sec4Ever.Com


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top