- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 20037
- Проверка EDB
-
- Пройдено
- Автор
- CIPH3R
- Тип уязвимости
- WEBAPPS
- Платформа
- LINUX
- CVE
- null
- Дата публикации
- 2012-07-23
Код:
######################################################################################
# Vuln Title: Atmail WebAdmin and webmail Control Panel Remote Access SQL Root password Vulnerability
#
# Author: FaryadR (a.k.a Ciph3r)
# tested on : Atmail Email Server 6.20.8
# Twitter : https://twitter.com/faryadR
# Mail : Ciph3r.secure@gmail.com
# Website : http://0c0c0c0c.com
# Vendor : http://atmail.com
# Powered by Atmail 6.20.8 - WebAdmin Control Panel
#
######################################################################################
[+]Vulnerability :
you can Access All Atmail Webadmin Mail server Configuration and SQL Root Password
[+]Poc :
Go to webmail and config Directory and type dbconfig.ini for Access all SQL Configuration
[+]Demo for Test Vuln :
[+]Atmail 6.20.8
http://server/config/dbconfig.ini- Источник
- www.exploit-db.com
