Monday, February 14, 2011

CMS Powered by sen9.com Multiple Vulnerabilities

CMS Powered by sen9.com Multiple Vulnerabilities

SQL

http://site.com/productDetail.php?P_Id=[sql]
http://site.com/subPage.php?SP_Id=[sql]
http://site.com/videoDetail.php?V_Id=[sql]
http://site.com/journal.php?J_Id=[sql]



screenshot:

XSS

http://site.com/x.php?V_Name=[xss]&SE_Name=[xss]




Directory Listing


there are more vuln found.
I just highlight the high risk vuln

status:reported

thanks
-p0pc0rn-
Share:

0 comments: