AOH :: HP Unsorted C :: C07-1120.HTM

CuteNews 1.3.6 XSS



CuteNews 1.3.6 XSS
CuteNews 1.3.6 XSS



PHP Script: CuteNews 1.3.6
Class: XSS
Website: http://cutephp.com/cutenews 
Found by: Detefix
dork: inurl:cutenews

-----

- Vulnerable Code:

$result

-----

- Exploit:

http://[target]/[path-to-cutenews]/?result=[XSS] 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.