PHP
Path Traversal with weak protection mechanism
by Brumens
drag_indicator
drag_indicator
drag_indicator
Path traversal with weak protection mechanism
Found a way to escape the /tmp/files/notes/
directory and access arbitary files on the vulnerable application!
Goal
Capture the flag!
The flag can be found in the file: /tmp/secret/flag.txt
Hints
Solution
drag_indicator
INPUT
OUTPUT
drag_indicator
drag_indicator