关键信息 基本信息 EDB-ID: 4954 CVE: 2008-0431 Author: MHz91 Type: WEBAPPS Platform: PHP Date: 2008-01-21 Vulnerable App: IDM-OS 1.0 漏洞详情 Title: Remote File Disclosure Vulnerability Bug: Remote File Disclosure Vulnerability Info: IDMOS is a CMS (Content Management System) that fills all requirements in IDM Method. It provides dynamic front-end and administrative tools. Multilanguage, template-based, component-base, it is written in PHP and uses MySQL as DB. Visit: http://www.inj3ct-it.org 漏洞利用方法 Exploit: - 可以下载服务器上的文件,例如可以获取数据库凭证文件 - 利用URL: - 尝试获取 文件: