Pheap 1.x/2.0 - 'edit.php' Directory Traversal

Author: laurent gaffie
type: webapps
platform: php
port: 
date_added: 2007-02-22 
date_updated: 2013-11-16 
verified: 1 
codes: CVE-2007-1140;OSVDB-33140 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/22670/info

Pheap is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to retrieve and edit the contents of arbitrary files from the vulnerable system in the context of the affected application.

http://www.example.com/edit.php?em=file&filename=../../../../../../../../../../../../../etc/passwd