Edit Report

Our sensors found this exploit at:

Below is a copy:

~ Summery :
Name          : Tiny PHP forum v3.6
Software      :
Discovered by : Hessam-x (Hessam M.Salehi) -

~ Vulnerabilities :
I. Cross-site Scripting
 A.Input code to the "uname" in profile.php
 B.input code in login name and login , in erorr page you can see xss code!

II. Access to hash password
This use very bad method for save hash password.
user's password save in a file,for example admin's password
saved in this file :

Iran Hackerz Security Team , 2006-04-16

Copyright ©2023 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.