Lucene search
High-Tech Bridge SAEDB-ID:35063HistoryDec 07, 2010 - 12:00 a.m.
Zimplit CMS - 'zimplit.php?File' Cross-Site Scripting
2010-12-0700:00:00
High-Tech Bridge SA
www.exploit-db.com
13
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/45252/info
Zimplit CMS is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
http://www.example.com/path/zimplit.php?action=load&file=%3Cscript%3Ealert%28document.cookie%29%3C/script%3E Related
cvelist
cvelist
CVE-2010-4513
2010-12-09 20:00:00
exploitdb
exploitdb
Zimplit CMS 3.0 - Multiple Vulnerabilities
2013-09-13 00:00:00
cve
cve
CVE-2010-4513
2010-12-09 21:00:01
htbridge
htbridge
Cross-site Scripting (XSS) Vulnerabilities in Zimplit CMS
2010-11-22 00:00:00
prion
prion
Cross site scripting
2010-12-09 21:00:00
nvd
nvd
CVE-2010-4513
2010-12-09 21:00:01