Web4Future Portal Solutions Arhiva.PHP Directory Traversal Vulnerability

2014-07-01T00:00:00
ID SSV:80356
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/15718/info

Portal Solutions is prone to a directory traversal vulnerability. This is due to a lack of proper sanitization of user-supplied input.

This issue may be leveraged to read arbitrary files on an affected computer with the privileges of the Web server. An attacker can employ directory traversal sequences to disclose arbitrary files. 

http://www.example.com/arhiva.php?dir=../