105 matches found
forkcms 3.2.5 - Multiple Vulnerabilities
ForkCMS 3.2.5以及更低版本存在CSRF和XSS反射型漏洞。IMB X-Force确认3.2.6版本也存在CSRF漏洞。 1.CSRF ForkCMS 3.2.5存在CSRF漏洞,攻击者可删除admins/users用户,删除网页,并且当授权的admin用户访问包含以下html/javascript代码的网页时可提权: 1.1删除Admins或Users用户 CSRF Exploit to delete ADMIN/USER account 注意第一个能删除的ID是2而不是1。因为1是安装阶段创建的超级管理员,称为"Fork CMS"(ForkCMS 定义了...
ForkCMS 3.2.5 Multiple Vulnerabilities
Exploit for php platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : ForkCMS 3.2.5 Multiple Vulnerabilities Author : Ivano Binetti http://ivanobinetti.com Software...
ForkCMS 3.2.5 Cross Site Request Forgery / Cross Site Scripting
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : ForkCMS 3.2.5 Multiple Vulnerabilities Date : 21-02-2012 Author : Ivano Binetti http://ivanobinetti.com Software link : http://www.fork-cms.com/downlo...
Fork CMS 3.2.5 - Multiple Vulnerabilities
Fork CMS 3.2.5 - Multiple Vulnerabilities +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : ForkCMS 3.2.5 Multiple Vulnerabilities Date : 21-02-2012 Author : Ivano Binetti http://ivanobinetti.com...
Fork CMS 3.2.5 - Multiple Vulnerabilities
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : ForkCMS 3.2.5 Multiple Vulnerabilities Date : 21-02-2012 Author : Ivano Binetti http://ivanobinetti.com Software link :...