Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: SIMPLOG 0.9.3 injection sql & multiple xss

SIMPLOG 0.9.3 injection sql & multiple xss

From: <saps.audit_at_gmail.com>
Date: 3 Nov 2006 18:18:58 -0000
('binary' encoding is not supported, stored as-is) [[ SIMPLOG 0.9.3 ]]

cms website : http://www.simplog.org/

xss:
        [*] Administration Panel
                - user.php
                        *Name
                        *URL
                        *Email
                        *API Key
                        *Flickr Email
                        *Flickr Password
                        
                - news.php
                        *URL
                        
                - edit.php
                        *Title
                        *Entry
                        *Manual TrackBack
        => risk very low
        
        [*] SimpLog User Part
                simplog/archive.php?blogid=1&pid=</textarea>'"><script>alert(document.cookie)</script>
        => risk low
        
Sql injections :

        simplog/archive.php?blogid=
        simplog/archive.php?blogid=1&pid=
        simplog/index.php?blogid=
        
        => risk high
        
Global risk for this cms: medium

Benjamin Mossé & Laurent Gaffié
http://s-a-p.ca/
Received on Nov 03 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos