Full Disclosure mailing list archives
Re: Vulnerability in reCAPTCHA for Drupal
From: Valdis.Kletnieks () vt edu
Date: Thu, 17 Feb 2011 15:59:40 -0500
On Thu, 17 Feb 2011 21:39:49 +0100, Michele Orru said:
I mean, every Drupal user knows that the default path to register a new user is user/register, or that the default admin account is reachable at user/1, or that the contact form is at the contact URI.
Yes, but that's the *URL PATH*. What's the full path *on the filesystem*? Is it /opt/drupal/user/register? Or did they stick it in /usr/local/drupal? Or somewhere else? This actually matters if you're trying to do a tree traversal exploit like ../../../path/to/drupal/install/ - or if you *thought* you had configured your system so it wouldn't leak full pathnames so skiddies couldn't abuse tree traversal exploits.
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Vulnerability in reCAPTCHA for Drupal MustLive (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Zach C. (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Eyeballing Weev (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Zach C. (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Michele Orru (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Valdis . Kletnieks (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Charles Morris (Feb 18)
- Message not available
- Message not available
- Re: Vulnerability in reCAPTCHA for Drupal Conor (Feb 18)
- Re: Vulnerability in reCAPTCHA for Drupal Zach C. (Feb 18)
- Re: Vulnerability in reCAPTCHA for Drupal Eyeballing Weev (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Zach C. (Feb 17)
- Re: Vulnerability in reCAPTCHA for Drupal Valdis . Kletnieks (Feb 18)
- Re: Vulnerability in reCAPTCHA for Drupal Charles Morris (Feb 18)
- Re: Vulnerability in reCAPTCHA for Drupal Ulisses Montenegro (Feb 19)