[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : NightFall Personal Diary 1.0 (XSS/DD) Multiple Remote Vulnerabilities
# Published : 2008-12-05
# Author : AlpHaNiX
# Previous Title : RankEm (auth bypass) Remote SQL Injection Vulnerability
# Next Title : Merlix Teamworx Server (DD/Bypass) Multiple Remote Vulns


###########################################################################
#-----------------------------OffensiveTrack------------------------------#
###########################################################################


---------------------------- Tunisian Muslim ------------------------------

#found by : OffensiveTrack
#Author   : AlpHaNiX
#website  : www.offensivetrack.org

#contact  : AlpHa[AT]HACKER[DOT]BZ

###########################################################################

#script   : NightFall
#download : http://iwrite.brinkster.net/nightfall.zip



#Exploits :

--=[XSS]=--
in the login page /login.asp write in the login fields your evil codes


--=[Database Disclosure]=--
http://target.com/db/users-zza21.mdb



#special thanks for syst3m and crimeirc staff

###########################################################################

# www.Syue.com [2008-12-05]