PHP Scripts Mall website-seller Script 2.0.5 Stored and Reflected XSS.

Capture

………………………………………………………………………………………………………………

For Reflected XSS:

1. First Goto XSS vulnerable Website “http://www.officialwebsiteforsale.com/” :⇩:

go to website

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

2. Goto Search field

3. Edit search field with XSS script :⇩:

type XSS script

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

4. Than Hit Enter :

5. You Will See The XSS popup “SUKANTA” :⇩:

refected XSS popup

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

For Stored XSS:

1. First Goto XSS vulnerable Website “http://www.officialwebsiteforsale.com/” :⇩:

go to website

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

2. Login as a user  :⇩:

login panal

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

3. Goto “Edit Profile”  :⇩:

edit my profile

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

4. Edit any field with XSS script  :⇩:

Edit XSS Script

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

5. Then Save Profile

6. You will be having a popup “SUKANTA 1” :⇩:

Stored XSS popup

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

/////////////////////////////////////////////////////////////////////////////////////////////////////////////

||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||

Advertisements

7 thoughts on “PHP Scripts Mall website-seller Script 2.0.5 Stored and Reflected XSS.

Add yours

  1. Unquestionably consider that that you stated. Your favorite
    justification appeared to be at the web the easiest thing
    to be mindful of. I say to you, I certainly get irked even as people
    consider concerns that they plainly don’t realize about. You controlled to
    hit the nail upon the top as neatly as outlined out the entire thing
    with no need side effect , folks could take a
    signal. Will probably be again to get more. Thanks

    Like

  2. Wonderful blog! I found it while searching on Yahoo News.
    Do you have any tips on how to get listed in Yahoo News? I’ve been trying for
    a while but I never seem to get there! Thank you

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Blog at WordPress.com.

Up ↑

Create your website at WordPress.com
Get started
%d bloggers like this: