chicomas.2.0.4

Author : Hadi Kiamarsi ---------------------------------------------------------------------------------- Discovered by : Hadi Kiamarsi ---------------------------------------------------------------------------------- Exploited By : Hadi Kiamarsi...

Chicomas 2.0.4 - index.php Cross-Site Scripting

Chicomas 2.0.4 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/29025/info ChiCoMaS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

chicomas204-xss.txt

Author : Hadi Kiamarsi ---------------------------------------------------------------------------------- Discovered by : Hadi Kiamarsi ---------------------------------------------------------------------------------- Exploited By : Hadi Kiamarsi...

Directory traversal

Directory traversal vulnerability in Chilek Content Management System aka ChiCoMaS 2.0.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the operation parameter to the default URI under install/...

CVE-2008-2016

The CVE-2008-2016 entry concerns Chilek Content Management System (ChiCoMaS) 2.0.4. The vulnerability is a PHP remote file inclusion via the lang parameter to the default URI under install/, enabling remote attackers to execute arbitrary PHP code. The note indicates this can also be leveraged to ...

chicomas-rfilfi.txt

Author: Hadi Kiamarsi Exploit By : Hadi Kiamarsi Email : [email protected] CMS: chicomas.2.0.4 Download CMS : http://garr.dl.sourceforge.net/sourceforge/chicomas/chicomas.2.0.4.zip web site : http://ircrash.com File Inclusion Local & Remote Bugs : Local File Inclusion:...