cve/2015/CVE-2015-6518.md

CVE-2015-6518

Description

Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.

POC

Reference

• http://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.html

Github

• https://github.com/iandrade87br/OSCP
• https://github.com/personaone/OSCP
• https://github.com/promise2k/OSCP
• https://github.com/xsudoxx/OSCP