[34923] in bugtraq
oscommerce 2.2 file_manager.php file browsing
daemon@ATHENA.MIT.EDU (Rene)
Mon May 17 18:04:34 2004
Date: 17 May 2004 19:37:16 -0000
Message-ID: <20040517193716.747.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Rene <l0om@excluded.org>
To: bugtraq@securityfocus.com
l0om - l0om[at]excluded.org - www.excluded.org
greets,
while i was "warsearching" with google i suddenly
have been on the admin interfaces of many oscommerce
sites. i made a:
allinurl:admin/file_manager.php
for nomal you can only view your oscommerce
directorys, but if you type in the following you can
view any file on the server with the webservers
permissions:
file_manager.php?action=download&filename=../../../../../../../../
etc/passwd
as you have to be logged in this isnt hot but i think
its better to know about it.
l0om
