is your safe mode on? .. whats ur platorm. give more details!
On Wednesday 23 June 2004 07:05 am, VeNoMouS wrote:Found a issue last night while testing php_exec_dir patch
if you do the following
$blah=`ps aux`; echo nl2br($blah);
php_exec_dir will block the call if you have set the exec_dir parm in php or apache
anyway.... if you do this
$blah=`;ps aux`; echo nl2br($blah);
it bypasses the exec block and excutes the ps due to the ';', as bash interrupts ';' as a new cmd, ive emailed the author but no response.
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html