a bug in Smf 2.0.2 that allows to us to occur a Cross-Site Scripting
on a Remote machin.
#############################
Exploit Title : Smf 2.0.2 Cross-Site Scripting Vulnerability
Discovered By : Am!r
Security Risk : High
Version : All Version
Tested on : GNU/Linux Ubuntu - Windows Server - win7
Dork : intext:"Powered By smf 2.0.2"
#############################
Expl0iTs :
[Target]/ssi_examples.php?view=[Xss]
C0de :
if (isset($_GET['view']) && $_GET['view'] == 'home1')
{
template_homepage_sample1('output');
exit;
}
#############################
Greats : B3HZ4D - Net.W0lf - nimaarek - Mikili - Dead.Zone - C0dex - noter- TaK.FaNaR - Nafsh - BestC0d3r
0x0ptim0us - TaK.FaNaR - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - M.R.S.CO - Mr.Xpr - Mr.Cicili
#############################