PHPix album Parameter Encoded Traversal Arbitrary File/Directory Access

The PHPix program allows an attacker to read arbitrary files on the remote web server, prefixing the pathname of the file with ..%2F..%2F.. For example: GET /Album/?mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0 will return all the files that are nested within...

SLA-15-PHPix.txt

Synnergy Laboratories Advisory SLA-2000-15 NAME PHPix 1.0.X directory traversal vulnerability AFFECTED Linux/UNIX with PHPix 1.0.0/1.0.1/1.0.2 SYNOPSIS Synnergy Labs has found a flaw within PHPix that allows a user to successfully traverse the filesystem on a remote host, allowing arbitary...

PHPix advisory

Synnergy Laboratories Advisory SLA-2000-15 NAME PHPix 1.0.X directory traversal vulnerability AFFECTED Linux/UNIX with PHPix 1.0.0/1.0.1/1.0.2 SYNOPSIS Synnergy Labs has found a flaw within PHPix that allows a user to successfully traverse the filesystem on a remote host, allowing arbitary...

Дырка в PHPix

Обратный путь в директориях позволяет обращаться к любым файлам, например http://target.com/Album/?mode=album&album=..2F..2F..2F..2F..2F..2F..2F..2Fetc&dispsize=640&start=0...

phpix 1.0 - Directory Traversal

phpix 1.0 - Directory Traversal source: https://www.securityfocus.com/bid/1773/info PHPix is a web-based photo-album system written in PHP. It is vulnerable to an attack that allows a malicious remote user to view arbitrary files on the target webserver with the privileges of the webserver. The...

phpix 1.0 - Directory Traversal

source: https://www.securityfocus.com/bid/1773/info PHPix is a web-based photo-album system written in PHP. It is vulnerable to an attack that allows a malicious remote user to view arbitrary files on the target webserver with the privileges of the webserver. The problem is that "../" character...