Joomla Component com_reservations XSS Vulnerability

2010-05-30 09:27:37

# Exploit Title: Joomla Component Reservations XSS Vulnerability
# Date: 28th May 2010
# Author: Valentin
# Category: webapps/0day
# Version: unknown
# Tested on:
# CVE :
# Code :


[:::::::::::::::::::::::::::::::::::::: 0x1 ::::::::::::::::::::::::::::::::::::::]
>> General Information
Advisory/Exploit Title = Joomla Component Reservations XSS Vulnerability
Author = Valentin Hoebel
Contact = [email protected]


[:::::::::::::::::::::::::::::::::::::: 0x2 ::::::::::::::::::::::::::::::::::::::]
>> Product information
Name = Reservations
Vendor = unisoft.me
Vendor Website = http://www.unisoft.me
Affected Version(s) = unknown


[:::::::::::::::::::::::::::::::::::::: 0x3 ::::::::::::::::::::::::::::::::::::::]
>> XSS
Example URI =
index.php?option=com_reservations&task=askope&nidser=2&namser=[XSS]


[:::::::::::::::::::::::::::::::::::::: 0x4 ::::::::::::::::::::::::::::::::::::::]
>> Additional Information
Advisory/Exploit Published = 28th May 2010


[:::::::::::::::::::::::::::::::::::::: 0x5 ::::::::::::::::::::::::::::::::::::::]
>> Misc
Greetz && Thanks = inj3ct0r team, Exploit DB and hack0wn!
Special Greetz = cr4wl3r and /JosS!
<3 packetstormsecurity.org!


[:::::::::::::::::::::::::::::::::::::: EOF ::::::::::::::::::::::::::::::::::::::]

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.