Code injection

download.aspx in Douran Portal 3.9.7.8 allows remote attackers to obtain source code of arbitrary files under the web root via 1 a trailing ".", 2 a trailing space, or 3 mixed case in the FileNameAttach parameter...

CVE-2011-1569

CVE-2011-1569 affects Douran Portal up to version 3.9.7.8; the vulnerability is in the download.aspx flow where an attacker can obtain source code of arbitrary files under the web root by supplying a filename with a trailing dot, trailing space, or mixed case in the FileNameAttach parameter. Root...

CVE-2010-2336

CVE-2010-2336 affects Yamamah Photo Gallery 1.00; the index.php download parameter allows remote attackers to obtain the source code of executable files within the web document root. The root cause is improper handling of the download parameter that exposes server file contents. Impact is exposur...

CVE-2009-4531

CVE-2009-4531 affects httpdx 1.4.4 and earlier, enabling remote disclosure of web-page source code by appending a dot to the URI. The vulnerability is described consistently across sources as a server-side flaw in handling specific request syntax, allowing partial disclosure of scripts or page co...

Teach you to quickly locate the target website source code-bug warning-the black bar safety net

First look at an example: The target site is a shopping site, wherein a section of the“My selling”point of the path is: mycsproc. asp-- This page name is very characteristic, Oh To www. seeknot. com the search bar in the input mycsproc. asp, select the default directory to find the way, to submit...

CVE-2009-3646

InterVations NaviCOPA Web Server 3.01 allows remote attackers to obtain the source code for a web page via an HTTP request with the addition of ::$DATA after the HTML file name...

PHP 5.2.4 ionCube extension safe_mode / disable_functions Bypass

Exploit for unknown platform in category local exploits ================================================================ PHP 5.2.4 ionCube extension safemode / disablefunctions Bypass ================================================================ ionCub...

PHP 5.2.4 ionCube - ioncube_read_file Safe Mode Disable Functions Bypass

PHP 5.2.4 ionCube - ioncubereadfile Safe Mode Disable Functions Bypass ionCube output:"; echo $MyBootioncube; ? milw0rm.com 2007-10-11...

Design/Logic Flaw

AN HTTPD 1.42n, and possibly other versions before 1.42p, allows remote attackers to obtain source code of scripts via crafted requests with 1 dot and 2 space characters in the file extension...

CVE-2006-1391

The CVE-2006-1391 entry concerns two web servers: Quick 'n Easy Web Server (before 3.1.1) and Baby ASP Web Server (2.7.2). The issue is that an attacker can remotely obtain the source code of ASP files by crafting URLs where the extension uses a dot/space (e.g., manipulating the URL extension), e...

CVE-2005-1656

Mercur Messaging 2005 SP2 allows remote attackers to read the source code of .ctml files via a URL with a trailing hex-encoded space "%20"...

CVE-2003-0411

Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension...

Source code retrival in Sambar

It's possible to get source code by adding space with NULL symbol to filename...

Получение исходного текста CGI в Bad Blue (source code retrieval)

Додбавив 00 к имени файла PHP или CGI можно получить его исходный код...

Получение исходного кода страницы в Perception LiteServe (source code retrieval)

Можно получить исходный текст страницы используя имена в формате 8.3...