Task 6

The task can be accessed at http://localhost/zadachi/6/.

It is a system for uploading files. The checks implemented in the system allow the users to load files only of a particular type.


The system processes the PATH GET parameter incorrectly.

  • Goal 1. Find a crucial vulnerability and investigate it.

  • Goal 2. Use only the http://localhost/zadachi/6/ system and exploit the vulnerability to obtain the source code of the image from book  INDEX.PHP file.

Hacker Web Exploition Uncovered
Hacker Web Exploition Uncovered
ISBN: 1931769494
Year: 2005
Pages: 77

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net