3 matches found
Bajie 0.78 - Arbitrary Shell Command Execution
Bajie 0.78 - Arbitrary Shell Command Execution source: https://www.securityfocus.com/bid/2389/info Requesting a specailly crafted URL containg arbitrary code, can be exected on a Unix system running Bajie Webserver. Any arbitrary commands appended to a malicious URL after the ';' will be executed...
Bajie WebServer 0.78/0.90 - Remote Command Execution
source: https://www.securityfocus.com/bid/2388/info It is possible to execute arbitrary commands on a host running Bajie Webserver. A remote user can use Bajie's built-in upload feature to place malicious scripts on Bajie webservers. These uploaded scripts are placed in known destination...
Дырка в Bajie Webserver
Можно узнать физическое расположение файлов, а обратный путь в директории позволяет получить доступ к любому файлу в системе...