- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 8057
- Проверка EDB
-
- Пройдено
- Автор
- RAWJAW
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2009-02-16
Код:
###########################################################
# Software: InselPhoto v1.1 Persistent XSS Vulnerability #
# Discovered by: Paul Hand aka rAWjAW #
# Blog: http://rawjaw-security.blogspot.com #
# E-mail: phand3754<at>gmail<dot>com #
# Shouts: rBg && eternal_security #
###########################################################
For this Persistent XSS to work you have to:
1. Create a user account
2. Create an album
3. Upload any picture to the photo album you created and put as the description something such as: <script>alert(document.cookie)</script>
4. Now have anyone view your slideshow!
# milw0rm.com [2009-02-16]- Источник
- www.exploit-db.com
