Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
DVoropaev2019-04-03 21:44:38
Burglary protection
DVoropaev, 2019-04-03 21:44:38

What is this type of vulnerability called?

From the user, the site receives an IP, and then pings it and returns the result of the ping utility to the user.
However, input validation is not implemented, which makes it possible to force the server to execute a command by appending it with an ampersand.
if we tell the site:
8.8.8.8 & ls
then along with the results of the ping we will also get a list of directories

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
T
Tyranron, 2019-04-03
@DVoropaev

RCE (Remote Code Execution/Evaluation) .

Report
S
Sergey, 2019-04-03
@gangstarcj

It's called sloppiness.
List of types of vulnerabilities www.captcha.ru/articles/antihack Choose any
But more like XSS and SQL Injection (replace sql with bash)

Similar questions
P
Page-Audit.ru2021-07-06 11:10:26
Why has Facebook disabled XSS protection? 1Reply
D
dailysse2018-03-11 14:15:39
How to intercept https traffic on android/ios device? 2Reply
V
vaniapooh2012-01-11 09:32:57
Hash collision attack in PHP 3Reply
T
thechucky2018-03-28 20:02:02
What are these scripts and what do they do? 2Reply
T
tostpypy2018-04-07 21:51:37
Can a person harm me by "intercepting" packets? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question