info
discussion
exploit
solution
references
CakePHP Vendors.PHP Directory Traversal Vulnerability
Attackers may exploit this vulnerability via a web client.
An example URI has been provided:
http://www.example.com/js/vendors.php?file=../../../../[file]%00foobar.js
Privacy Statement
Copyright 2010, SecurityFocus
