Everyone should be careful with every stuff, you can also inject a
LOAD_FILE('/etc/passwd') into a MYSQL query easily.
On Fri, Jul 17, 2009 at 2:28 PM, Michelle Konzack <
linux4miche...@tamay-dogan.net> wrote:
> Am 2009-07-17 14:23:30, schrieb Nitsan Bin-Nun:
> > You can create a PHP script which
Am 2009-07-17 14:23:30, schrieb Nitsan Bin-Nun:
> You can create a PHP script which will serve files based on their location
> which will be transfered through a GET parameter.
> Just send the correct response headers which will be corresponded to the
> file's mime type, size, etc.
>
> Then use so
You can create a PHP script which will serve files based on their location
which will be transfered through a GET parameter.
Just send the correct response headers which will be corresponded to the
file's mime type, size, etc.
Then use something like:
Good luck!
On Fri, Jul 17, 2009 at 2:19 PM
3 matches
Mail list logo
