2 matches found
Hotaru CMS 1.4.2 Cross Site Scripting
Hotaru CMS 1.4.2 SITENAME Parameter Stored XSS Vulnerability function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; input type="hidden" name="SITENAME" val...
Hotaru CMS 1.4.2 SITE_NAME Parameter Stored XSS Vulnerability
Summary Hotaru CMS is an open source, PHP platform for building your own websites. With flexible plugins and themes, you can make any site you like. Description The CMS suffers from multiple XSS vulnerabilities. Input thru the POST parameters 'SITENAME' stored, 'return' reflected and the GET...