This is a vulnerability writeup detailing multiple XSS and file disclosure vulnerabilities in CompactCMS 1.4.1. It includes paths for file disclosures and specific XSS vectors via GET and POST parameters.
Classification
Writeup 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:CompactCMS 1.4.1
No auth needed
Prerequisites:Access to the target CompactCMS instance