Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » PHP ImgList Directory Traversal Vulnerability

PHP ImgList Directory Traversal Vulnerability

by Nikola Strahija on March 15th, 2002 PHP ImgList allows a user to generate a web gallery of image files. PHP ImgList does not adequately filter '../' sequences from web requests, making it prone to directory traversal attacks. This vulnerability could be exploited to effectively disclose any file on a host running the affected software.


Remote: Yes

Exploit: No exploit code required.

Solution: PHP ImgList 1.2.2 is not vulnerable to this issue:


Jerrett Taylor PHP ImgList 1.1:

Jerrett Taylor Upgrade imlist.zip
http://www.liquidpulse.net/get.lp?id=17

Jerrett Taylor PHP ImgList 1.2:

Jerrett Taylor Upgrade imlist.zip
http://www.liquidpulse.net/get.lp?id=17

Jerrett Taylor PHP ImgList 1.2.1:

Jerrett Taylor Upgrade imlist.zip
http://www.liquidpulse.net/get.lp?id=17



Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »