2 matches found
phpsource.traverse.txt
--SLDf9lqlvOQaIe6s Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable =3D=3D Vendor: Kaf Oseo =3D=3D Product: http://guff.szub.net/quick-dirty-phpsource-printer/ =3D=3D Version: 1.0 =3D=3D Vulnerability: Filtering "../" to "" allowed...
[Full-disclosure] Directory traversal vulnerability in "Quick & Dirty PHPSource Printer" 1.0
== Vendor: Kaf Oseo == Product: http://guff.szub.net/quick-dirty-phpsource-printer/ == Version: 1.0 == Vulnerability: Filtering "../" to "" allowed use of ".../...//" to be inserted and changed to "../" allowing directory traversal. == Fix: Use the following line instead: $file = strstr$fileget,...