>> XOOPS 2.5.7.2 Directory Traversal

USER: deepcore // DATE: 2016-03-20 06:47 // MODIFIED: 2016-03-20

XOOPS version 2.5.7.2 has checks to defend against directory traversal attacks. However, they can be easily bypassed by simply issuing “…/./” instead of “../”.