搜索 “XSS”

Category: Page containing log in portal & Web Server Detection Description: This dork allows user to access default page of Oracle Weblogic Server - UDDI Explorer. Some of scanner tools would detect SSRF vulnerability for weblogic uddi explore...

Category: Page containing log in portal & Web Server Detection Description: This dork allows user to access default page of Oracle Weblogic Server - UDDI Explorer. Some of scanner tools would detect SSRF vulnerability for weblogic uddi explore...

This Dork, helps us find websites, which contain the mgl-instagram-gallery plugin of WordPress Vulnerable to XSS inurl:"mgl-instagram-gallery/single-gallery.php?media" Drok3r

首先列举所有利用到的缺陷 全局参数可被污染 无CSRF防御框架 $_GET,$_POST, $_COOKIE请求被合并处理 特殊的XSS 框架分析（Metinfo漏洞）： （1）Metinfo框架在文件include/common.inc.php中，将$_GET,$_POST,$_COOKIE请求合并进行了处理，这意味着整个框架所有$_POST...

Dork to find the "No External Links" plugin vulnerable to XSS ""Error: Plugin does not support standalone calls, damned hacker."" allinurl:"/wp-content/plugins/wp-noexternallinks" Drok3r

Finds pages that can be XSS'd and edited e.g.: http://www.site.com/admin/index.php?msg=Click me! Dxtroyer

Dork to find Joomla JMS Support Online Module Reflected XSS (skype module) Type: Reflected XSS Vulnerable URL:http://localhost/[PATH]/sendmessage.php Vulnerable Parameters: ?type=skype&user=&skype= Method: GET Payload: ">