Toko Lite CMS 1.5.2 Cross Site Scripting

Toko Lite CMS 1.5.2 EditNavBar.php Multiple Parameters XSS POST Injection function xssdocument.forms"xss".submit; input type="hidden" name="c...

Toko Lite CMS 1.5.2 (EditNavBar.php) Multiple Parameters XSS POST Injection

Summary Toko Web Content Editor cms is a compact, multi language, open source web editor and content management system CMS. It is advanced easy to use yet fully featured program that can be integrated with any existing site. It takes 2 minuets to install even for non technical users. Description...

Toko Lite CMS 1.5.2 - HTTP Response Splitting / Cross-Site Scripting

source: https://www.securityfocus.com/bid/49673/info Toko LiteCMS is prone to an HTTP-response-splitting vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...

Toko Lite CMS 1.5.2 - HTTP Response Splitting Cross-Site Scripting

Toko Lite CMS 1.5.2 - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/49673/info Toko LiteCMS is prone to an HTTP-response-splitting vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...