Exploit Bytes interactive Web shopper 1.0/2.0 - Directory Traversal

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
20280
Проверка EDB
  1. Пройдено
Автор
F0BIC
Тип уязвимости
REMOTE
Платформа
CGI
CVE
cve-2000-0922
Дата публикации
2000-10-08
Код:
source: https://www.securityfocus.com/bid/1776/info

Bytes Interactive Web Shopper is a XML based shopping cart application. 

The "newpage" variable does not properly check for insecure relative paths such as the double dot "..". 

The following URL request:

http://target/cgi-bin/shopper.cgi?newpage=../../../path/filename.ext

will yield the file specified.

Successful exploitation could lead to a remote intruder gaining read access to any known file.
 
Источник
www.exploit-db.com

Похожие темы