Everyone should be careful with every stuff, you can also inject a
LOAD_FILE('/etc/passwd') into a MYSQL query easily.
On Fri, Jul 17, 2009 at 2:28 PM, Michelle Konzack <
linux4michelle@xxxxxxxxxxxxxxx> wrote:
> Am 2009-07-17 14:23:30, schrieb Nitsan Bin-Nun:
> > You can create a PHP script which will serve files based on their
> location
> > which will be transfered through a GET parameter.
> > Just send the correct response headers which will be corresponded to the
> > file's mime type, size, etc.
> >
> > Then use something like:
> > <img src='a.php?image_full_path=/home/root/etc/fdsa.jpg' />
> >
> > Good luck!
>
> "Good luck!" is good... He should be careful with such stuff... because
> someone can do something like:
>
> wget http://${SERVER}/a.php?image_full_path=/etc/passwd
>
>
> Thanks, Greetings and nice Day/Evening
> Michelle Konzack
> Systemadministrator
> Tamay Dogan Network
> Debian GNU/Linux Consultant
>
>
> --
> Linux-User #280138 with the Linux Counter, http://counter.li.org/
> ##################### Debian GNU/Linux Consultant #####################
> Michelle Konzack c/o Shared Office KabelBW ICQ #328449886
> +49/177/9351947 Blumenstasse 2 MSN LinuxMichi
> +33/6/61925193 77694 Kehl/Germany IRC #Debian (irc.icq.com)
>
