Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-4893. PoCs published by Abysssec.
AI-analyzed exploit summary This is a detailed writeup describing multiple vulnerabilities in FestOS CMS 2.3b, including SQL injection, local file inclusion (LFI), and cross-site scripting (XSS). It provides proof-of-concept examples for each vulnerability but does not include executable exploit code.
Description
Cross-site scripting (XSS) vulnerability in foodvendors.php in FestOS 2.3b allows remote attackers to inject arbitrary web script or HTML via the category parameter in a details action.
Exploits (1)
This is a detailed writeup describing multiple vulnerabilities in FestOS CMS 2.3b, including SQL injection, local file inclusion (LFI), and cross-site scripting (XSS). It provides proof-of-concept examples for each vulnerability but does not include executable exploit code.