BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Lantern CMS Path Disclosure, SQL Injection, Reflected XSS
Apr 04 2017 07:51AM
Patrick Webster (patrick osisecurity com au)
https://www.osisecurity.com.au/lantern-cms-path-disclosure-sql-injection
-reflected-xss.html
Date:
04-Apr-2017
Product:
LanternCMS
Versions affected:
Unknown
Vulnerabilities:
1) Path disclosure
By requesting a site with an invalid intSiteI or numRedirectCount:
http://[target]/www/default.asp?int...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
-reflected-xss.html
Date:
04-Apr-2017
Product:
LanternCMS
Versions affected:
Unknown
Vulnerabilities:
1) Path disclosure
By requesting a site with an invalid intSiteI or numRedirectCount:
http://[target]/www/default.asp?int...
[ more ]