|
____________________ ___ ___ ________=0D
\_ _____/\_ ___ \ / | \\_____ \ =0D
| __)_ / \ \// ~ \/ | \ =0D
| \\ \___\ Y / | \=0D
/_______ / \______ /\___|_ /\_______ /=0D
\/ \/ \/ \/ =0D
=0D
.OR.ID=0D
ECHO_ADV_33$2006=0D
=0D
---------------------------------------------------------------------------=0D
[ECHO_ADV_33$2006] CMS Faethon 1.3.2 mainpath Remote File Inclusion=0D
---------------------------------------------------------------------------=0D
=0D
Author : M.Hasran Addahroni a.k.a K-159=0D
Date : June, 16th 2006=0D
Location : Indonesia, Bali=0D
Web : http://advisories.echo.or.id/adv/adv33-K-159-2006.txt=0D
Critical Lvl : Highly critical=0D
Impact : System access=0D
Where : From Remote=0D
---------------------------------------------------------------------------=0D
=0D
Affected software description:=0D
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~=0D
CMS Faethon =0D
=0D
Application : CMS Faethon =0D
version : 1.3.2=0D
URL : http://cmsfaethon.com/=0D
Description :=0D
=0D
CMS Faethon is content management system for different web pages.=0D
=0D
---------------------------------------------------------------------------=0D
=0D
Vulnerability:=0D
~~~~~~~~~~~~~~~~=0D
=0D
in folder data we found vulnerability script header.php.=0D
=0D
-----------------------header.php----------------------=0D
....=0D
=0D
RSS - cmsfaethon.com
=0D