ARASTAR Portal System suffers from a cross site scripting vulnerability.
32fe953c4b69bbc4c887b2a46cb5fe2901ad4a8a9a4c445c453cef140d62e1b6ARASTAR Portal System (search.php) XSS Vulnerability
Software : ARASTAR
Date : 1/13/2012
Vendor : http://www.ara-star.com
Get App. : http://www.ara-star.com/sale.php?sale=3
Price : $480
Dork : site:*.il intext:"powered by ARASTAR"
Author : ITTIHACK
Home : http://ittihack.com
Vulnerable File : Search.php
Exploit : Use the dork above to find yours, go to the home page and post XSS code in (( search box ))
Note; do not post it in the URL above, just in search box
Examples : <script>alert(1337)</script>
<center><h1> Found By ITTIHACK </h1></center>
Demo Sites: http://radio.ara-star.com <-- Supporter
http://aljalel.co.il
http://alwan.co.il
#Greatz to: ___ ____ ____
#````______/```\__//```\__/____\
#``_/```\_/``:```````````//____\
#`/|``````:``:``..``````/ Reinie \
#|`|`````::`````::``````\````````/
#|`|`````:|`````||`````\`\______/
#|`|`````||`````||``````|\``/``|
#`\|`````||`````||``````|```/`|`\
#``|`````||`````||``````|``/`/_\`\
#``|`___`||`___`||``````|`/``/````\
#```\_-_/``\_-_/`|`____`|/__/``````\
#````````````````_\_--_/````\`````/
#```````````````/____```````````/
#``````````````/`````\`````````/
#``````````````\______\_______/
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed