[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] PHP able to browse all dirs

Subject: Re: [cobalt-users] PHP able to browse all dirs
From: Stefan Bauckmeier <s.bauckmeier@xxxxxxxxxxxxx>
Date: Tue Feb 26 05:38:01 2002
Organization: m.k.technics
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Mevers Automatisering - Mevershosting.nl wrote:

Dear all,

I found out that PHP is able to browse all dirs on our Raq4.

It was even able to create and read all (YES ALL) files on the server.



php is able to browse all directorys but php is not able to read all files!

<?php
system("cat /etc/shadow >test.txt");
readfile("test.txt");
?>

this script shows an empty result file ...
(tested on raq4)

stefan bauckmeier

References:
- [cobalt-users] PHP able to browse all dirs
  - From: Mevers Automatisering - Mevershosting.nl

Prev by Date: Re: [cobalt-users] Question_Warning.GIF (404)
Next by Date: [cobalt-users] RAQ4- Unknown errors LogFiles
Previous by thread: [cobalt-users] PHP able to browse all dirs
Next by thread: [cobalt-users] problem with sendmail and php

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index