-page-....-2f-2f....-2f-2f....-2f-2fetc-2fpasswd

27,561
Chargement du player
En ligne
Hinori 32 ans
-page-....-2F-2F....-2F-2F....-2F-2Fetc-2Fpasswd Viens t'amuser avec moi

-page-....-2f-2f....-2f-2f....-2f-2fetc-2fpasswd

Do not use user input to construct file paths. Instead, use an indirect mapping (e.g., use an ID instead of a filename).

: This is the URL-encoded version of the forward slash ( / ). Attackers use hex or URL encoding to trick poorly configured Web Application Firewalls (WAFs) that only look for literal / characters.

At first glance, this looks like a or a log entry showing an attack pattern. The -2F is URL encoding for the forward slash / . When decoded, the pattern becomes:

If you're concerned about accesses to sensitive paths like /etc/passwd in your logs:

import os base = '/var/www/pages/' req = request.GET['page'] safe = os.path.realpath(os.path.join(base, req)) if not safe.startswith(base): raise Forbidden() -page-....-2F-2F....-2F-2F....-2F-2Fetc-2Fpasswd

While this is a famous example in cybersecurity "papers" and CTFs, modern frameworks usually prevent this by: Sandboxing file access. Validating/Chrooting user input. indirect identifiers

. It is used to exploit vulnerabilities in web applications that improperly handle user-supplied file paths. Analysis of the Payload : This suggests the target is a URL parameter (e.g., ) used to dynamically load content. ....-2F-2F : This is a double URL-encoded version of (forward slash) is encoded as Some filters might block , so attackers use

$allowed_pages = [ 'home' => 'templates/home.php', 'about' => 'templates/about.php', 'contact' => 'templates/contact.php' ]; $page = $_GET['page']; if (array_key_exists($page, $allowed_pages)) include($allowed_pages[$page]); else // Return a 404 error Use code with caution. 3. Use basename() Input Sanity

The /etc/passwd file is a local database found on all Linux and Unix-like operating systems. What it Contains Do not use user input to construct file paths

: This is a manipulation of the standard dot-dot-slash ( ../ ) shortcut used to move up one level in a file directory.

: The industry-standard "paper" for understanding this vulnerability. It provides a comprehensive overview of how "dot-dot-slash" sequences are used to access files outside the web root.

In the world of web application security, few things are as critical as controlling how an application accesses files on the underlying server. When this control fails, it often leads to a vulnerability known as or Directory Traversal .

If you are interested in learning more about how to test for this, I can explain the common techniques for finding and testing this vulnerability, or how to use automated scanners to identify it. Let me know what you'd prefer. Share public link Attackers use hex or URL encoding to trick

-page-....-2F-2F....-2F-2F....-2F-2Fetc-2Fpasswd

: Storing passwords in /etc/passwd was historically done but considered insecure. Modern systems use shadow passwords stored in /etc/shadow , which is only readable by root, enhancing security.

Use built-in functions provided by your programming language to sanitize paths (e.g., realpath() in PHP or os.path.abspath() in Python). Strip out dangerous characters like .. , / , and \ . Use Indirect Object References:

A path traversal attack occurs when an application uses unvalidated user input to build a file path on the server. Path Traversal - Web Security Academy - PortSwigger