CVE-2018-16457 Open source real-estate script- 3.6.2 -Directory traversal

I found that specified Exploit Title: Open source real-estate script- 3.6.2 -Directory traversal. To exploit this vulnerability, the following steps were taken.

1.Go to the site ( http://phpscriptsmall.info/demo/directoryscript/) .

2.Right Click => on any Images => And Copy Image Location => *“> and then click on Search.

3. Go to new tab => and paste copy image location =>>> http://phpscriptsmall.info/demo/directoryscript/wp-content/themes/template_dp_dec2015/img/banner.jpg..

4. Go to link and remove => jpg file name =>> http://phpscriptsmall.info/demo/directoryscript/wp-content/themes/template_dp_dec2015/img

Now You will having show Directory..

Leave a Comment