IHS

Google Search: intitle:”View Img” inurl:viewimg.php

murfie rates this entry 6 out of 10.
Submitted: 2004-11-30 00:00:00
Added by: murfie
Hits: 2078
Score: 6

It is reported that the ‘viewing.php’ script does not properly validate user-supplied input in the ‘path’ variable. A remote user can submit a specially crafted URL to view a list of files within an arbitrary directory. See http://securitytracker.com/alerts/2004/Nov/1012312.html for more information.

Comments:

2005-12-17 12:55:54 (userdan):
If we can’t read the files themselves, this vuln doesn’t give us anything…

Donor Wall
Donate to the Wall

Donation Amount:
(Currency: USD)

Repeat Donation: x

Put my Donation on the Recognition Wall

Show on Wall:

Name:

Email:

Website:

Comments:

Write your comment within 199 characters.
Donor Cloud
Finanz-Duell LVM Berlin Tanzen Berlin Webdesign Berlin
Donate, get linked, feed a child!
All proceeds go directly to our Kenya food for work program.

USD

Click here to learn more about the donor cloud.
Donations

Make a general donation

Or Support the Longs directly!
Member Login
Username:
Password:
Remember me
- Lost your password?
- Subscribe

Home of Johnny Long and Hackers for Charity, Inc

Donor Wall

Donate to the Wall

Donations

Recent Comments

IHS

Home of Johnny Long and Hackers for Charity, Inc

Donor Wall

Donate to the Wall

Donations

Member Login

Recent Comments