nightfall personal diary 1.0 - Cross-Site Scripting / File Disclosure

EDB-ID:

7351


Author:

AlpHaNiX

Type:

webapps


Platform:

PHP

Date:

2008-12-05


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

###########################################################################
#-----------------------------OffensiveTrack------------------------------#
###########################################################################


---------------------------- Tunisian Muslim ------------------------------

#found by : OffensiveTrack
#Author   : AlpHaNiX
#website  : www.offensivetrack.org

#contact  : AlpHa[AT]HACKER[DOT]BZ

###########################################################################

#script   : NightFall
#download : http://iwrite.brinkster.net/nightfall.zip



#Exploits :

--=[XSS]=--
in the login page /login.asp write in the login fields your evil codes


--=[Database Disclosure]=--
http://target.com/db/users-zza21.mdb



#special thanks for syst3m and crimeirc staff

###########################################################################

# milw0rm.com [2008-12-05]