Penetration Testing mailing list archives

Re: PHP Directory Transversal

From: Cedric Foll <cedric.foll () ac-rouen fr>
Date: Thu, 10 Mar 2005 15:55:21 +0100

I user the same source code in my server, and I could retrieve thefile...what can be happening? I don't think it is under a chroot jail...


Maybe "open_basedir = /var/www" in php.ini.

Current thread:

PHP Directory Transversal Andres Molinetti (Mar 10)
- Re: PHP Directory Transversal Felikz (Mar 10)
  - Re: PHP Directory Transversal Andres Molinetti (Mar 10)
- Re: PHP Directory Transversal David M. Zendzian (Mar 10)
- Re: PHP Directory Transversal Cedric Foll (Mar 10)
- RE: PHP Directory Transversal Ravish (Mar 10)
  - Terminal Services AEHeald (Mar 11)
    - Re: Terminal Services Kinnell (Mar 11)
    - RE: Terminal Services Jerry Shenk (Mar 11)
    - Re: Terminal Services John the Kiwi (Mar 11)
    - RE: Terminal Services Ola (Mar 14)
    - RE: Terminal Services Mark Woan (Mar 16)
- Re: PHP Directory Transversal John GALLET (Mar 14)