https://www.xxx.co.uk/register.php;| grep 123
I wonder what kind of browser could make this, probably a hacker-made one!
This URL will have to be translated into its equivalent URI, if using
GET the HTTP message's start line would look like:
GET /register.php| grep 123 HTTP/1.1
First of all,
Hi
Can anyone help me handel this URL injection ?
https://www.xxx.co.uk/register.php;| grep 123
I want to detect it and header back to my index page.
It's quite urgent
Thanks for help
M.
2009/6/4 Morris morris...@gmail.com:
Hi
Can anyone help me handel this URL injection ?
https://www.xxx.co.uk/register.php;| grep 123
I want to detect it and header back to my index page.
It's quite urgent
What the smeg is register.php doing that makes it execute that?? Show
us the code.
Hi
The register.php has only a form
?php
form name=registerUser action=register.php method=post
input type=text name=username size=10 /
input type=submit value=send /
/form
?
Does this help ?
Thanks for reply
2009/6/4 Stuart stut...@gmail.com
2009/6/4 Morris morris...@gmail.com:
Hi
2009/6/4 Morris morris...@gmail.com:
Hi
The register.php has only a form
?php
form name=registerUser action=register.php method=post
input type=text name=username size=10 /
input type=submit value=send /
/form
?
Does this help ?
1) That is not valid PHP code.
2) Even if it were
Is there more to the register.php file that we're not seeing? It has to have
some sort of action...
On Thu, Jun 4, 2009 at 3:28 PM, Stuart stut...@gmail.com wrote:
2009/6/4 Morris morris...@gmail.com:
Hi
The register.php has only a form
?php
form name=registerUser
6 matches
Mail list logo