Exploit Omnicron OmniHTTPd 2.0.4-8 - File Source Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
20886
Проверка EDB
  1. Пройдено
Автор
ASTRAL
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2001-0778
Дата публикации
2001-05-26
Код:
source: https://www.securityfocus.com/bid/2788/info

Submitting a specially crafted GET request for a known file (.php, .pl, or .shtml), could cause OmniHTTPD to disclose the source code of the requested resource. The GET requested would have to be appended with the Unicode equivalent of a space.

Example:

GET /filename.php%20
 
Источник
www.exploit-db.com

Похожие темы