facebook facebook twitter rss

Zend Application Bootstrap error_log Full Path Disclosure

Author: xMjahd , Published: 24-03-2013
wGet xMjahd
__ __ _ _ _
__ __| \/ |(_) _ __ __| || |__
\ \/ /| |\/| || | | '_ \ / _` || '_ \
> < | | | || | | |_) || | | || |_) |
/_/\_\|_| |_|| \_ |_.__/ |_| |_||_.__/
\__|
# Exploit Title: Zend Application Bootstrap error_log Full Path Disclosure vulnerability
# Date: 23/03/2013
# Author: xMjahd / xMjahd(at)Gmail(dot)com
# Category : [ webapps ]
# Type : php
# Tested on: Windows
#------------------
Dork:inurl:"intext:application/Bootstrap.php on line 3 | inurl:application/error_log"

Demo
http://www.ethioshoppingdirectory.com/application/error_log
http://www.allo-pressing.ma/chhiwatkom.com/application/Bootstrap.php
Greet's To iPunish , xLine , Mr-H4rd3n , Federal , 4shrf ,Mauritanian Attacker
Dr-Spam ,Mr-Benladen ,V!ru$ No!r, Azar36.exe ,syS Anti
Things do not change, we change.

Like us on Facebook :