doITlive CMS Multiple SQL Injection and Cross-Site Scripting Vulnerabilities

info
discussion
exploit
solution
references

doITlive CMS Multiple SQL Injection and Cross-Site Scripting Vulnerabilities

An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim user to follow a malicious URI.

The following exploit examples are available:

/data/vulnerabilities/exploits/29789.html