AOH :: HP Unsorted M :: VA3280.HTM

MataChat Cross-Site Scripting Vulnerabilities



MataChat Cross-Site Scripting Vulnerabilities
MataChat Cross-Site Scripting Vulnerabilities



a bug in MataChat that allows to us to occur a Cross-Site Scripting on a Remote machin.=0D
this bug tested with the Vulnerable Software All Ver.=0D
--------------------------------------------------=0D
=0D
=0D
######################################################################################################=0D
#                                                                                                    #=0D
#                Islamic Republic Of Iran Security Team                                              #=0D
#                                                                                                    #=0D
# Www.IrIsT.Ir #=0D 
#                                                                                                    #=0D
######################################################################################################=0D
#                                                                                                    #=0D
# MataChat <== All Version Cross-Site Scripting Vulnerabilities                                      #=0D
#                                                                                                    #=0D
# Download......: http://www.Planet-Source-Code.com/vb/scripts/ShowCode.asp?txtCodeId=1536&lngWId=8 #=0D 
#                                                                                                    #=0D
# Bug Found.....: IrIsT=99                                                                             #=0D
#                                                                                                    #=0D
# discovery.....: Am!r (IrIsT=99)                                                                      #=0D
#                                                                                                    #=0D
# contact.......: Admin[at]IrIsT.ir                                                                  #=0D
#                                                                                                    #=0D
# Exploit.......: http://[site]/[path]/input.php?nickname=[XSS]&color=[XSS] #=0D 
#                                                                                                    #=0D
# Google Search.: "Powered By MataChat"                                                              #=0D
#                                                                                                    #=0D
# SP TNX........: Dr.FlagHk & satanicstar & bl4ck-h4t-b0ys & all IrIsT members                       #=0D
#                                                                                                    #=0D
######################################################################################################

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.