- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 20714
- Проверка EDB
-
- Пройдено
- Автор
- UKR HACKING TEAM
- Тип уязвимости
- REMOTE
- Платформа
- CGI
- CVE
- cve-2001-0593
- Дата публикации
- 2001-03-27
Код:
source: https://www.securityfocus.com/bid/2512/info
Clipper is a headline-gathering tool from Anaconda! Partners which, in certain versions, is vulnerable to directory traversal attacks.
By including '/../' sequences in requested URLs, an attacker can cause the retrieval of arbitrary files, compromising the privacy of user data and potentially obtaining information which could be used to further compromise the host's security.
http://www.target.com/cgi-bin/anacondaclip.pl?template=../../../../../../../../../../../../../../../../../../etc/passwd- Источник
- www.exploit-db.com
