# Common bug in Zend framework
1. Exposed config files
* Full Path Exploit : http://target.com//application/configs/application.ini