Submitted by Easton on Sat, 10/15/2011 - 03:49
After playing around with WorkSimple 1.3.5 (and apparently not doing much  testing), login.php doesn't redirect on login and cp.php strips HTML.  Download the attachments below and replace cp.php and login.php with the new versions. Save the new versions as cp.php and login.php respectively and upload them to your WorkSimple install directory.
| Attachment | Size |
|---|---|
 login.php_.txt | 1 KB |
| cp.php_.txt | 10.7 KB |
Comments
exploit
Submitted by Anonymous Coward on Sun, 02/02/2014 - 10:16saw this online. has it been fixed?
http://www.exploit-db.com/exploits/11550/
 As far as I can remember,
Submitted by Easton on Tue, 02/04/2014 - 01:44Â As far as I can remember, yes. I haven't looked at the WorkSimple code in a very long time, but I remember seeing these exploits of WorkSimple around the web and fixing the code (at least I think so ;) )