PHP Web Stat 4.x.x Information Disclosure

PHP Web Stats versions 4.x.x suffers from an information disclosure vulnerability.

MD5 | ff34e66846fe9d67c26d9fc933a4df8c

Download

========================================================================
| # Title     : php web stat v4.x.x information Disclosure vulnerability
| # Author    : indoushka
| # email     : [email protected]
| # Tested on : windows 10 FranASSais V.(Pro)
| # Version   : all
| # Vendor    : http://wmscripti.com/
| # Dork      : Copyright A(c) 2010 PHP Web Stat  A*  Version 
========================================================================

poc : 

[+] Dorking Adegn Google Or Other Search Enggine 

[+] add : sysinfo.php

Source code disclosure  :

http://www.dvd-palace.de/webstats/sysinfo.php


http://www.hh.schule.de/abg-stgeorg/Plan/stat/config/config.txt

Greetz : aua'>>a'1/2a'1/2a'dega'deg aua'degaua'degau a'>>a'*a'*auaua'>>------au-auau-a'deg a'degaua'degauPSaua'3a'>>au-------- aua'degauau!a'>>auau aua'degauaua'*oauaua'degau ------
                                                                       |
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz                 |
                                                                       |
===================== pa'degaua'1/2a'>>au auauoauau aua'>>auauauauauauC/  =============================

Source: packetstormsecurity.com