bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

DoceboLMS Xss Vuln.

from [starext] [Permanent Link][Original]
To: bugtraq@securityfocus.com
Subject: DoceboLMS Xss Vuln.
From: starext@msn.com
Date: 29 Dec 2006 16:38:13 -0000
Delivered-to: sp-com-lists@consult.net
Delivered-to: bugtraq-list@securepoint.com
Delivered-to: mailing list bugtraq@securityfocus.com
Delivered-to: moderator for bugtraq@securityfocus.com
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@securityfocus.com; run by ezmlm 
# Bhhgroup.org & Trtekforum.com

# script name : MaviPortal (tr)

# Version : All

#script Download: 
http://www.docebo.org/doceboCms/index.php?mn=docs&op=download&pi=5_4&id=44

# script sites : http://www.docebo.org

# Risk : High

# Found By : St@rExT

#  Vulnerable file : arama.asp

#Xss Vuln:

http://www.target/[scriptoath]//modules/credits/credits.php?lang==[xssCode]


# Thanks : Dekolax , ShaFuck31 , ST@ReXT , Dekolax , Swat_Hack , Maverick , 
Candark , Torlaq , Woheras , Siruas,TurkAkrep

# E-mail: Starext[at]msn[dot]com

##Herkesin Kurban Bayram&#305; Mübarek olsun : ) ###

             ##################### -- Ne Mutlu Türküm Diyene !!! -- 
####################
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • DoceboLMS Xss Vuln., starext <=
Previous by Date:  LDU <= 8.x (journal.php) SQL Injection Vulnerability, starext
Next by Date:  Re: XSS in script Mobilelib GOLD v2, gamr-14
Previous by Thread:  LDU <= 8.x (journal.php) SQL Injection Vulnerability, starext
Next by Thread:  csrss.exe double-free vulnerability - arbitrary DWORD overwrite exploit, Reversemode
Indexes:  [Date] [Thread] [Top] [All Lists]