LFI at http://www.████
High
S
Sony
Submitted None
Team Summary
Official summary from Sony
The researcher reported that a Sony endpoint was vulnerable to a Local File Inclusion (LFI) vulnerability via a URL parameter. The researcher was able to leverage this vulnerability to read the contents of sensitive system files such as /etc/passwd and /proc/version.
Actions:
Reported by
n0x496n
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Command Injection - Generic