file-path-traversal
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTIONNO_CODE
Full Analysis
- [COMMAND_EXECUTION]: Provides example shell commands for security testing tools such as curl, ffuf, and wfuzz to demonstrate vulnerability identification.
- [DATA_EXFILTRATION]: Documents sensitive file paths including SSH private keys, /etc/shadow, and web server configuration files as targets for testing data exposure.
- [REMOTE_CODE_EXECUTION]: Includes example payloads for PHP wrappers and log poisoning, including a base64-encoded PHP system execution command, to illustrate escalation from directory traversal to full server compromise.
Audit Metadata