HAM3D Shop Engine CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
1ff525393758bf5f38b347f6082d6a122ba68a023ccbfd162961b7af6c57d4bd [+] Exploit Title : HAM3D Shop Engine CMS XSS Vulnerability
[+] Discovered By : Medrik
[+] Vendor Home-Page : http://ham3d.net/
[+] Tested On : Windows
Note : Another XSS Vuln Discovered By IeDb .
############################
This Is a XSS Vulnerability In HAM3D Cms .
[~] Locate :
http://vulnerable_host/rating/rating.php?ID=[XSS]
[~] Image : http://i.imgur.com/W7AWoMo.png
############################
Demo :
http://www.hamonkala.com/rating/rating.php?ID=[XSS]
http://maktabevahy.ir/rating/rating.php?ID=[XSS]
http://www.hormand.com/rating/rating.php?ID=[XSS]
############################
Spc Tnx : Beni_Vanda , BlacK.KinG , Dr.3v1l , 8ThBiT , M.R.S.CO , Unline , 0x0ptim0us
./2014 , Grey Hat Boys ...
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed