Points: 200 Description: Darkcoder found a flaw in realistic 12 that allowed him to read any file through the guest.pl script. The bug was that user-input was checked before the uri escape was done, allowing him to specify any character he wanted.
No Lectures Given
Comments: Published: 23 comments.
HackThisSite is is the collective work of the HackThisSite staff, licensed under a CC BY-NC license.
We ask that you inform us upon sharing or distributing.