HomeclosedFAQRegisterLog in

Share | 
 

 Error.php XSS vulnerabilities

Go down 
AuthorMessage
V1P3R
WhiteHat Support
WhiteHat Support
avatar

Posts : 76
White Hat Points : 202
White Hat Reputation : 10
Join date : 2013-07-30

PostSubject: Error.php XSS vulnerabilities    Wed Jul 31, 2013 10:41 am

Risk: Cross site scripting, Cookie Grabbing, Phishing

Dork wrote:
"inurl:error.php?error="

To learn more about XSS: Go here.

1.Go to Google, now type the dork "inurl:error.php?error="

in search results ignore all the extra results with different url Like: error-php-error.php

pick site with url: [You must be registered and logged in to see this link.] only.

2.Now Type your first Tag to Check the vulnerability
Code:
www.site.com/error.php?error=<h1>Test</h1>

3.There you go! If it shows you "Test" word in deader tag it means the site is XSS vulnerable.
Back to top Go down
 
Error.php XSS vulnerabilities
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
Home of Ethical White Hat Hackers :: White Hat Hackers Community :: Hacking & Security Tutorials-
Jump to: