allinurl:forcedownload.php?file=

GHDB-ID:

3738

Author:

DigiP
Published: 2011-08-25

Google Dork Description:

allinurl:forcedownload.php?file=
Google Search: allinurl:forcedownload.php?file= 
Didn't see this anywhere in the GHDB, but its been known for a while and 

widely abused by others.



Google Dork "allinurl:forcedownload.php?file="



Sites that use the forcedownload.php script are vulnerable to url 

manipulation, and will spit out any file on the local site, including the 

PHP files themselves with all server side code, not the rendered page, but 

the source itself. This is most commonly used on wordpress sites to grab the 

wp-config.php file to gain access to the database, but is not limited to 

wordpress sites. I only list it as an example, so people understand the 

weight of flaw.



- DigiP
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services