CMS Mini 0.2.2 - Remote Command Execution

--+++================================================================+++-- --+++====== CMS Mini ". "\n+ Ex. : php xpl.php localhost /CMSmini". "\n\n"; if $argc != 3 usage; $hostname = $argv 1; $path = $argv 2; $fp = fsockopen $hostname, 80; $post = "message="; $request = "POST...

Directory traversal

Multiple directory traversal vulnerabilities in view/index.php in CMS Mini 0.2.2 allow remote attackers to read arbitrary local files via a .. dot dot in the 1 path and 2 p parameter...

CVE-2008-2961

CVE-2008-2961 affects CMS Mini 0.2.2. The vulnerability is a directory traversal in view/index.php, where an attacker can read arbitrary local files by supplying a .. sequence in the path parameter and the p parameter. Impact is partial confidentiality loss (read access to local files). The NVD e...

CMS Mini 0.2.2 Multiple Local File Inclusion Vulnerabilities

No description provided by source. AUTHOR : CWH Underground DATE : 22 June 2008 SITE : www.citec.us APPLICATION : CMS Mini VERSION : 0.2.2 VENDOR : http://www.cmsmini.it/ DOWNLOAD : http://downloads.sourceforge.net/cmsmini --- Local File Inclusion --- ---------------------------- Vulnerable File...