Sourcefabric Campsite Articles – HTML Injection

Exploit Database
16 阅读

作者： D4rk357

日期： 2010-07-15
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/34350/

source: https://www.securityfocus.com/bid/41780/info

Sourcefabric Campsite is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.

Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible. 

<marquee><h1>XSS3d By D4rk357</h1><marquee>

last Exploits
Sourcefabric Campsite Articles – HTML Injection的更多信息

Double Your Bitcoin Script Automatic – Authentication Bypass：
Spectrum Software WebManager CMS – ‘pojam’ Cross-Site Scripting：
OpenEMR – ‘site’ Cross-Site Scripting：
PHP Press Release – Cross-Site Request Forgery (Add Admin)：
CS-Cart 1.3.3 – authenticated RCE：
AChecker 1.0 – ‘URI’ Cross-Site Scripting：
Hospital Management System 4.0 – Authentication Bypass：
Landa Driving School Management System 2.0.1 – Arbitrary File Upload：