This script in asp permettedi executing of the commandos taking advantage of a bug of the XSSper greater info you can see the video:
and the shell:
passwd:
Code:
SecurityTeam

XSS Shell Install Video

7 minutes video shows how can you installation and configuration of xssshell-xsstunnell

Code:
For further details and idea refer to the white paper  XSS  Tunnelling. It may can take about 60 seconds to load.

http://ferruh.mavituna.com/blogs/XSS...stallation.swf

Explore More

Critical SQL Injection in Myanmar Calendar

PlanetCreator‘s Security Team Researcher Infofreakzzz reported another Critical SQL injection (vulnerability) on Myanmar Calendar URL : http://www.myanmarcalendar.org/ SQL injection is a code injection technique that exploits a security vulnerability occurring

Read More

Critical SQL Injection in Gulf Travels and Tours

PlanetCreator has reported another critical SQL Injection (vulnerability) on Gulf Tranvels and Tours : Your reliable agency in Myanmar http://www.myanmartravelsgulf.com powered by IndexMyanmar This vulnerability has been alerted to :-

Read More

Critical XSS vulnerability in YouthDreams.Net

Security Researcher $@T0R! reported another XSS vulnerability in http://www.youthdreams.net Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject

Read More