Skip to content

Path traversal vulnerability in main.c #34

New issue
New issue
Open
Open
Path traversal vulnerability in main.c#34
@japkettu

Description

@japkettu
japkettu
opened on Jan 24, 2024

Problem

The program fails to handle user's URL input correctly, resulting in path traversal.

Proof of Concept

  • run ./server 8000
  • curl --path-as-is http://127.0.0.1:8000/../../../../../../etc/passwd

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions