Code104 News: XSS vulnerability found in RankMyHack.com

Home
Hackers
Security News
Defacements
Vulnerability
Cyber-Crime
Our Friends

Tuesday, 13 December 2011

XSS vulnerability found in RankMyHack.com

Posted by Code104 Reporter Labels: Cyber News, Hacker News, Hackers, News, Vulnerability, XSS on , | Comments

A Hacker Named as "lolstorm" found a XSS vulnerability in Rankmyhack.com. The contact form of the website is vulnerable to XSS(cross site scripting). RankmyHack is a hackers ranking site based on their hack.

Vulnerable Link:
www.rankmyhack.com/contact.php

POC:
www.rankmyhack.com/contact.php?subject=XSS onmouseover=alert(this.value);

This displays an alert box with "XSS".

Subscribe to: Post Comments (Atom)

About Us !

This Blog is Maintained by Team "Code104" a.k.a League of Assasins to provide cyber news to the world in a better manner ! You can also submit news by e-mailing the brief info about your defacements ! at [news.code104@gmail.com]