[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : com_jm-recommend Cross Site Scripting Vulnerabilities
# Published : 2009-12-27
# Author : Pyske
# Previous Title : Joomla Component com_beeheard Blind SQL injection Vulnerability
# Next Title : lineaCMS Cross Site Scripting Vulnerability
# Exploit Title: com_jm-recommend Cross Site Scripting Vulnerabilities
# Date: 27:12:2009
# Author: Pyske
###########################################################################
Joomla Component com_jm-recommend Cross Site Scripting Vulnerabilities
###########################################################################
# Author : Pyske
# Name : com_jm-recommend
# Home : www.cyber-warrior.org
# Greetz : Fl0riX , M-K-A , F0RTS3V3N , 3KB3R and ALL Cyber-Warrior
# Bug Type : Cross Site Scripting
# Infection : Y?netici ve User cookiekleri calinabilir.
# Bug Fix Advice : Zararlı karakterler filtrelenmelidir.
# Demo Vuln. : http://server/index.php?option=com_jm-recommend&Itemid= [XSS CODE]
# Example : http://server/index.php?option=com_jm-recommend&Itemid= [ XSS Code ]
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
">
< -- bug code end of -- >