Re: [Debian-audit] Simple PHP scanning ..

From: Gerardo Di Giacomo <gerardo_at_linux.it>
Date: Sun, 20 Mar 2005 01:58:51 +0100

Ulf Harnhammar wrote:
> include("templatedir/$file");

with this you can do

file=../../../../../../../../../../../../../etc/passwd

directory traversal and get any (readable) file from the server.

Not the same vulnerability, but a vulnerability :)

Bye
Gerardo
Received on Sun Mar 20 2005 - 00:58:59 GMT

This message: [ Message body ]
Next message: Javier Fernández-Sanguino Peña: "Re: [Debian-audit] Simple PHP scanning .."
Previous message: Ulf Harnhammar: "Re: [Debian-audit] Simple PHP scanning .."
In reply to: Ulf Harnhammar: "Re: [Debian-audit] Simple PHP scanning .."
Next in thread: Ulf Harnhammar: "Re: [Debian-audit] Simple PHP scanning .."
Reply: Ulf Harnhammar: "Re: [Debian-audit] Simple PHP scanning .."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

Mailing list overview.