our team discovered a new vulnerability on IOS app Phone Drive 1.1.1

type of vulnerability is web server directory traversal .

we use ..%2f to change local directory and read some valuable files like address book and passwd .

exploit-db : http://www.exploit-db.com/exploits/17645/