I found that specified Exploit Title: Open source real-estate script- 3.6.2 -Directory traversal. To exploit this vulnerability, the following steps were taken.
1.Go to the site ( http://phpscriptsmall.info/demo/directoryscript/) .
2.Right Click => on any Images => And Copy Image Location => *“> and then click on Search.
3. Go to new tab => and paste copy image location =>>> http://phpscriptsmall.info/demo/directoryscript/wp-content/themes/template_dp_dec2015/img/banner.jpg..
4. Go to link and remove => jpg file name =>> http://phpscriptsmall.info/demo/directoryscript/wp-content/themes/template_dp_dec2015/img
Now You will having show Directory..