{"type": "myhack58", "edition": 1, "title": "iwebsns1. 0 arbitrary file deletion&&2 injection-vulnerability warning-the black bar safety net", "references": [], "bulletinFamily": "info", "published": "2013-08-25T00:00:00", "lastseen": "2016-11-08T21:17:31", "modified": "2013-08-25T00:00:00", "href": "http://www.myhack58.com/Article/html/3/62/2013/40292.htm", "viewCount": 0, "reporter": "\u6b8b\u82b1\u8d25\u67f3", "cvss": {"vector": "NONE", "score": 0.0}, "enchantments": {"score": {"value": 3.5, "vector": "NONE", "modified": "2016-11-08T21:17:31", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-08T21:17:31", "rev": 2}, "vulnersScore": 3.5}, "cvelist": [], "id": "MYHACK58:62201340292", "description": "action\\users\\user_ico_cut_save.action.php\n\n| 1 | &lt;? php \n---|--- \n\n2 | //Introduction module public method file \n---|--- \n\n3 | require(\"foundation/module_users.php\"); \n---|--- \n\n4 | require(\"foundation/aintegral.php\"); \n---|--- \n\n5 | require(\"foundation/fcontent_format.php\"); \n---|--- \n\n6 | require(\"api/base_support.php\"); \n---|--- \n\n7 | //language pack primer \n---|--- \n\n8 | $u_langpackage=new userslp; \n---|--- \n\n9 | //database operations \n---|--- \n\n1 0 | dbtarget('w',$dbServs); \n---|--- \n\n1 1 | $dbo=new dbex(); \n---|--- \n\n1 2 | $photo_url=short_check(get_argg('pic')); //here here. \n---|--- \n\n1 3 | $user_id=get_sess_userid();//user ID \n---|--- \n\n1 4 | $user_name=get_sess_username();//user name \n---|--- \n\n1 5 | $ico_url=long_check(get_argp('u_ico_url')); \n---|--- \n\n1 6 | look down \n---|--- \n\n1 7 | ; \n---|--- \n\n1 8 | ; \n---|--- \n\n1 9 | ; \n---|--- \n\n2 0 | \n---|--- \n\n2 1 | if(preg_match(\"/brought you\\/photo_store/\",$photo_url)){ \n---|--- \n\n2 2 | unlink($photo_url);//delete the temporary image file // you know \n---|--- \n\n**[1] [[2]](<40292_2.htm>) [[3]](<40292_3.htm>) [next](<40292_2.htm>)**\n", "immutableFields": []}

{}