Author Topic: how to find out absolute website path ? (Read 735 times)

x41r3d · « **on:** October 05, 2015, 04:32:17 am »

how can i find out the absolute path from a website.

for example site is saved in:

/var/www/websitefolder or /home/public_html/websitefolder

how can we get this information from outside???

is it possible generally? are there any scanners out there that can handle this ?

hcac · « **Reply #1 on:** October 05, 2015, 03:54:19 pm »

It shouldn't be possible, but it is lots of times.
"Full Path Disclosure", it's encountered as a bug.
An example you may seen, is the php errors, if error_reporting is on and there's something wrong..
As it's a bug, most scanners should report it (if they find it :d).
The abs path usually, can reveal so many things or even used in some kind of combination with another vuln like LFI (local file inclusion).

x41r3d · « **Reply #2 on:** October 06, 2015, 02:20:42 am »

"Full Path Disclosure", it's encountered as a bug.

that was the info i need

. thx

EvilZone

News:

Author Topic: how to find out absolute website path ? (Read 735 times)

x41r3d

how to find out absolute website path ?

hcac

Re: how to find out absolute website path ?

x41r3d

Re: how to find out absolute website path ?