BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: rConfig, the open source network device configuration management tool, Vulnerable to Local File Inclusion Jun 06 2016 08:20PM
Gregory Pickett (gpickett71 yahoo com)
rConfig v3.1.1 introduced whitelisting. This is how to get past that. :)

Greg

Verification of Vulnerability (for v3.1.1)
===================
The following steps can be carried out in duplicating this vulnerability.

Step 1:
Enter the following into your browser address bar:

http://<SERVER>/l...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus