5 lines
No EOL
372 B
Text
Executable file
5 lines
No EOL
372 B
Text
Executable file
source: http://www.securityfocus.com/bid/9720/info
|
|
|
|
phpNewsManager is prone to a file disclosure vulnerability. Remote attackers may submit malicious requests to the software that contain directory traversal sequences, potentially exposing sensitive resources outside of the hosting web server root.
|
|
|
|
http://www.example.com/functions.php?clang=../../../[existing_file] |