Joomla! Component FacileForms - Cross-Site Scripting

EDB-ID:

10737


Author:

Pyske

Type:

webapps


Platform:

PHP

Date:

2009-12-27


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

< ------------------- header data start ------------------- >

###########################################################################
Joomla Component com_facileforms Cross Site Scripting Vulnerabilities
###########################################################################

# Author : Pyske


# Greetz : Fl0riX , M-K-A , F0RTS3V3N , 3KB3R ,BARCOD3 and ALL Cyber-Warrior


# Name : com_facileforms


# Bug Type : Cross Site Scripting


# Infection : Yönetici ve User cookiekleri calinabilir.


# Bug Fix Advice : Zararl&#305; karakterler filtrelenmelidir.


# Demo Vuln. : http://server/index.php?option=com_facileforms&Itemid=[XSS CODE]

#############################################################

< ------------------- header data end of ------------------- >


< -- bug code start -- >


">


< -- bug code end of -- >