# Exploit Title: VLD Personal – Multiple Vulnerabilities # Date: 09/11/2014 # Exploit Author: Mr T # Exploit Authors Website: http://www.securitypentester.ninja # Vendor Homepage: http://www.vldpersonals.com/ # Software Link: http://www.vldpersonals.com/clients/downloads.php # Vulnerable Version: 2.7 # Fixed Version 2.7.1 # Tested on: Windows / Linux XSS Attack Issue detail: The value of the id request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 9811c”>b7ec317c816 was submitted in the id parameter. Response : GET /index.php?m=member_profile&p=profile&id=9811c”>