AOH :: Web :: Wiki, Collaborationware

AOH :: Web :: Wiki, Collaborationware :: TB12277.HTM
Tikiwiki 1.9.7 HTML/embed object injection

Crazy Slots Download
Tikiwiki 1.9.7 HTML/embed object injection Tikiwiki 1.9.7 HTML/embed object injection


Tikiwiki 
Version: 1.9.7 

Example Address 
http://example.com/tiki-remind_password.php 

Overview:
The following codes can be added to the HTML password page by placing the HTML codes in the user name input box and hitting the "send me my password" button. 

Examples:
1.

XSS
2.SRC="http://site.com/xss.swf" 
3.Pwned

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2010 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.