>Number: 3439 >Category: test >Synopsis: uhm.. someone gave me the link >http://www.hacker.com/cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd and i went >to it, just to see what it was.. b4 i knew it i was at yer site, with a "smile >yer on candid camera thing" and noticed the "phf >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: mistaken >Submitter-Id: apache >Arrival-Date: Sat Nov 21 06:10:00 PST 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: >Environment: i'm using ie browser, in a windoze environment >Description: uhm.. someone gave me the link http://www.hacker.com/cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd and i went to it, just to see what it was.. b4 i knew it i was at yer site, with a "smile yer on candid camera thing" and noticed the "phf abuse" url... sorry if i did something wrong.. some guy just gave me the link.. and this was the only way i could find to contact ya >How-To-Repeat:
>Fix: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ] [If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request ] [from a developer. ] [Reply only with text; DO NOT SEND ATTACHMENTS! ] abuse" url... sorry if i did something wrong.. some guy just gave me the link.. and this was the only way i could find to contact ya
