Lucene search
Stink'EDB-ID:10495HistoryDec 16, 2009 - 12:00 a.m.
PhpLinkExchange 1.02 - Cross-Site Scripting / Upload
2009-12-1600:00:00
Stink'
www.exploit-db.com
33
AI Score
7.4
Confidence
Low
#############################
PhpLinkExchange v1.02 - XSS/Upload Vulerability
Discovered by : Stink'
Date : 2009-12-16
Dork : "PhpLinkExchange v1.02"
Website Publisher : http://www.idevspot.com/PhpLinkExchange.php
#############################
-- [XSS in URL] --
http://server/links/PhpLinkExchange/index.php?page=home&catid=[XSS]
-- [XSS in form] --
http://server/links/PhpLinkExchange/index.php?page=tellafriend
The XSS is in "Your Email Adress"
-- [Upload Vulnerability] --
http://server/links/library/add_images.php
After your shell uploaded, go here :
http://server/links/appimage/ and search your shell :)Related
prion
prion
Cross site scripting
2008-08-14 19:41:00
cve
cve
CVE-2008-3679
2008-08-14 19:41:00
cvelist
cvelist
CVE-2008-3679
2008-08-14 19:00:00
exploitdb
exploitdb
nvd
nvd
CVE-2008-3679
2008-08-14 19:41:00