GetSimple 3.1 Shell Upload / Disclosure

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

GetSimple v3.1 <= (ShellUpload/FD) Multiple Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

CVE-2010-5052

Cross-site scripting XSS vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val parameter...

CVE-2010-5052

Cross-site scripting XSS vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val parameter...

CVE-2010-5052

GetSimple CMS 2.01 is affected by a cross-site scripting (XSS) vulnerability in admin/components.php. The flaw arises from input sanitation in the val[] parameter, allowing remote attackers to inject arbitrary web script or HTML. Exploitation was demonstrated via a crafted POST to /admin/componen...

CVE-2010-4863

Cross-site scripting XSS vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the post-title parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the post-title parameter...

CVE-2010-4863

Cross-site scripting XSS vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the post-title parameter...

CVE-2010-4863

GetSimple CMS 2.01 is affected by a Cross-site Scripting (XSS) vulnerability in admin/changedata.php via the post-title parameter. The root cause is an input sanitation error that allows remote attackers to inject arbitrary HTML/JS into a user’s browser. The CVE entry CVE-2010-4863 documents this...

GetSimple 3.0 Local File Inclusion

------------------------------------------------------------------------ Software................GetSimple 3.0 Vulnerability...........Local File Inclusion Threat Level............Critical 4/5 Download................http://get-simple.info/ Discovery Date..........5/4/2011 Tested...

Getsimple CMS 3.0 - set Local File Inclusion

Getsimple CMS 3.0 - set Local File Inclusion source: https://www.securityfocus.com/bid/47767/info GetSimple is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...

Getsimple CMS 3.0 - &#039;set&#039; Local File Inclusion

source: https://www.securityfocus.com/bid/47767/info GetSimple is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in...

Getsimple CMS 2.03 - upload-ajax.php Arbitrary File Upload

Getsimple CMS 2.03 - upload-ajax.php Arbitrary File Upload source: https://www.securityfocus.com/bid/46427/info GetSimple CMS is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files...

GetSimple CMS 2.03 Shell Upload

Exploit Title: GetSimple CMS =2.03 Remote Upload Shell 0day Google Dork: "powered by GetSimple Version 2.03" Date: 15/FEB/2011 Author: s3rg3770 and Chuzz irc.azzurra.org hackerjournal Site Author: http://reflective.noblogs.org OWL? / o\ /o /|:.V.:|\ \:::::// -----"" ""----- Software Link:...

Getsimple CMS 2.03 - &#039;upload-ajax.php&#039; Arbitrary File Upload

source: https://www.securityfocus.com/bid/46427/info GetSimple CMS is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary cod...

GetSimple CMS 2.03 Path Disclosure

Vulnerability ID: HTB22730 Reference: http://www.htbridge.ch/advisory/pathdisclosureingetsimplecms.html Product: GetSimple CMS Vendor: http://get-simple.info/ http://get-simple.info/ Vulnerable Version: 2.03 Vendor Notification: 02 December 2010 Vulnerability Type: Path disclosure Status: Not...

Path disclosure in GetSimple CMS

Vulnerability ID: HTB22730 Reference: http://www.htbridge.ch/advisory/pathdisclosureingetsimplecms.html Product: GetSimple CMS Vendor: http://get-simple.info/ http://get-simple.info/ Vulnerable Version: 2.03 Vendor Notification: 02 December 2010 Vulnerability Type: Path disclosure Status: Not...

GetSimple CMS Detection (HTTP)

HTTP based detection of GetSimple CMS. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.801550";...

GetSimple CMS < 2.03 Administrative Credentials Disclosure Vulnerability

GetSimple CMS is prone to an administrative credentials disclosure vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...