Exploit Ciamos 0.9.2 - 'Highlight.php' File Disclosure

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
25242
Проверка EDB
  1. Пройдено
Автор
MAJID NT
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
N/A
Дата публикации
2005-03-19
Код:
source: https://www.securityfocus.com/bid/12854/info

Ciamos is reported prone to a file disclosure vulnerability. The full scope of this vulnerability is not currently known, however, it is demonstrated that this issue may be leveraged to disclose the source of PHP files contained in a Ciamos installation.

A remote attacker may exploit this vulnerability to reveal files that contain potentially sensitive information. Information that is harvested in this manner may then be used to aid in further attacks against the software and the computer that is hosting the software.

http://www.example.com/ciamosinstalation/class/debug/highlight.php?file=ciamosinstallationpath\mainfile.php&line=151#151
 
Источник
www.exploit-db.com

Похожие темы