DIGIT CMS Multiple Vulnerabilities

日期: 2012/01/07 | 标签:DIGIT | 游览：375

PoC/Exploit:
~~~~~~~~~~

~ [PoC] ~: /website_path/Default.asp?sType=0&PageId=[Sqli]

~ [PoC]Http://[victim]/path/Default.asp?sType=0&PageId=[Sqli]

 Enter In Search Box XSS Code ~

<FORM action="Default.asp?PageId=-1" method=POST id=searchFORM
name=searchFORM  style="margin:0;padding:0">
<INPUT type="hidden" value="" name="txtSEARCH">
</FORM>

~ [PoC] ~: Http://[victim]/path/Default.asp

Note: There are vulnerabilities in the search field that you can use

← Apache Struts远程命令执行和任意文件覆盖漏洞

Priza CMS Multiple Vulnerabilities →

ZeroBox Vulnerability Database

坚持！我们将做的更好！

DIGIT CMS Multiple Vulnerabilities

评论关闭。