Underground CMS 1.x Search.Cache.Inc.PHP Backdoor Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26521/info Underground CMS is prone to a backdoor vulnerability. Attackers can exploit this issue to gain unauthorized access to the application. Successful attacks will compromise the affected application and possibly th...

Underground CMS Search.Cache.Inc.PHP后门漏洞

Underground CMS是一款内容管理程序。 Underground CMS Search.Cache.Inc.PHP存在一个后门，远程攻击者可以利用漏洞以WEB进程权限执行任意指令。 问题存在于/php/modules/entries/search.cache.inc.php文件中： 第8行： $cachepath = '/search/' . GetValidFilename$searchterm . '' . $searchhash . 'info.dat'; if@stripslashes$POST'p' ==...

Underground CMS 1.x - 'Search.Cache.Inc.php' Backdoor Access

Ucms v. 1.8 Np exploit function sethostseite document.host.action = seite + 'index.php?&q=test&e=1'; document.all.data.innerHTML = document.host.action; Ucms v. 1.8 Np exploit Actual Request: Host: Password: Phpcode: phpinfo; ? !-- It�s just a crime to do such thigs, so please use this exploit ju...

Underground CMS 1.x - Search.Cache.Inc.php Backdoor Access

Underground CMS 1.x - Search.Cache.Inc.php Backdoor Access Ucms v. 1.8 Np exploit function sethostseite document.host.action = seite + 'index.php?&q=test&e=1'; document.all.data.innerHTML = document.host.action; Ucms v. 1.8 Np exploit Actual Request: Host: Password: Phpcode: phpinfo; ? !-- It�s...