osCommerce Online Shop suffers from a remote backup disclosure vulnerability.
2dd0fdcf2b1d8e0edb241fd1c15a65bea47873728f8549eb69820e528661bc71
======================================================================================== $
| # Title : osCommerce online SHop Backup Vulnerability $
| # Author : indoushka |
| # email : indoushka@hotmail.com |
| # Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -(00213771818860) |
| # EDB-ID : |
| # CVE-ID : () |
| # OSVDB-ID : () |
| # DAte :16/12/2009 |
| # Verified : |
| # Web Site : www.iq-ty.com |
| # Published: |
| # Script : Powered by osCommerce online SHop http://www.oscommerce.com/ |
| # Tested on: windows SP2 Franē¢¶ais V.(Pnx2 2.0) + Lunix Franē¢¶ais v.(9.4 Ubuntu) |
| # Bug : Backup |
====================== Exploit By indoushka =================================
| # Exploit :
|
| 1-http://localhost/catalog/admin/backups/db_catalog.sql
|
================================ Dz-Ghost Team ========================================
Greetz : all my friend * Dos-Dz * Snakespc * His0k4 * Hussin-X * Str0ke * Saoucha * Star08 |
-------------------------------------------------------------------------------------------