来源:自学PHP网 时间:2015-04-17 14:47 作者: 阅读:次
[导读] 标题:BOOKSolved 1.2.2 (l) Remote File Disclosure VulnerabilityDiscovered by bd0rk www.2cto.com测试平台: Ubuntu-Linux开发者: http://www.usolved.net/下载地址: http://www.usolved.net/scr......
|
标题:BOOKSolved 1.2.2 (l) Remote File Disclosure Vulnerability Discovered by bd0rk www.2cto.com 测试平台: Ubuntu-Linux 开发者: http://www.usolved.net/ 下载地址: http://www.usolved.net/scripts/booksolved_v1.2.2.zip
测试: http://www.2cto.com /[path]/inc/gbook_setcookie.php?l=../../R3adIn.php
修复:过滤该页面 ---------------------------------------------------------------------------- 描述: gbook_setcookie.php line 7代码缺陷只是攻击者能read in sensitive files about l-parameter.
bd0rk's-Fixtip: Percolate the l-parameter before $_GET
Greetings from Germany, the 22 years old bd0rk. |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
