SweetRice 1.5.1 Cross Site Request Forgery / Cross Site Scripting

alert1' alert1 3. Xss in Page Limit: Payload should inject in cookies. Vulnerable Parameter : pagelimit Headers : GET /as/?appmode=database&plugin=App&type=plugin& HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 Windows NT 10.0; rv:49.0 Gecko/20100101 Firefox/49.0 Accept:...

SweetRice 1.5.1 - Arbitrary File Download Exploit

Exploit for php platform in category web applications /usr/bin/python -- Coding: utf-8 -- Exploit Title: SweetRice 1.5.1 - Local File Inclusion Exploit Author: Ashiyane Digital Security Team Date: 03-11-2016 Vendor: http://www.basic-cms.org/ Software Link:...

JAF CMS 4.0 RC2 Multiple Vulnerabilities

Exploit for php platform in category web applications ======================================== JAF CMS 4.0 RC2 Multiple Vulnerabilities ======================================== Product: SweetRice CMS Vendor: basic-cms.org http://www.basic-cms.org/ Vulnerable Version: 0.6.7 Vendor Notification: 21...

SweetRice CMS 0.6.7 Multiple Vulnerabilities

Exploit for php platform in category web applications ============================================ SweetRice CMS 0.6.7 Multiple Vulnerabilities ============================================ Product: SweetRice CMS Vendor: basic-cms.org http://www.basic-cms.org/ Vulnerable Version: 0.6.7 Vendor...