ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability

No description provided by source. DEVIL TEAM - HACKING POLISH TEAM Author: Kacper a.k.a Rahim Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 devilteam -------------------------------------------- Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM...

CVE-2003-0320

header.php in ttCMS 2.3 and earlier allows remote attackers to inject arbitrary PHP code by setting the ttcmsuseradmin parameter to "1" and modifying the adminroot parameter to point to a URL that contains a Trojan horse header.inc.php script...

CVE-2003-0320

header.php in ttCMS 2.3 and earlier allows remote attackers to inject arbitrary PHP code by setting the ttcmsuseradmin parameter to "1" and modifying the adminroot parameter to point to a URL that contains a Trojan horse header.inc.php script...

More vulnerabilities in ttForum/ttCMS -&gt; SQL injection

Advisory name: SQL Injection-Bug in ttForum all versions Application: ttForum - all versions Vendor: www.ttforum.com Status: Vendor of ttForum was contacted but didn't reply Impact: Attacker can get Administrator-rights on forum Platforms: any Technical description: ---------------------- Everybo...

Remote code execution in ttCMS &lt;=v2.3

Advisory name: Remote code execution in ttCMS 2.2.0/2.2.1 Application: ttCMS v2.3 and older versions Vendor: www.ttcms.com Status: Vendor was contacted but didn't reply - after posting about another hole on his forums, my account was banned Impact: Attacker can execute arbitrary php code Platform...

ttCMS 2.2/2.3 - &#039;header.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/7625/info A remote file include vulnerability has been reported for ttCMS. Due to insufficient sanitization of some user-supplied variables by the 'header.php' script, it is possible for a remote attacker to include a malicious PHP file in a URL...

ttCMS 2.2 / ttForum 1.1 - &#039;install.php?installdir&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/7542/info A remote file include vulnerability has been reported for both ttForum and ttCMS. Due to insufficient sanitization of some user-supplied variables by the 'News.php' and 'Install.php' scripts, it is possible for a remote attacker to include a...

ttCMS 2.2 ttForum 1.1 - install.php?installdir Remote File Inclusion

ttCMS 2.2 ttForum 1.1 - install.php?installdir Remote File Inclusion source: https://www.securityfocus.com/bid/7542/info A remote file include vulnerability has been reported for both ttForum and ttCMS. Due to insufficient sanitization of some user-supplied variables by the 'News.php' and...