Bezbedan Balkan Bezbednost državnih resursa Neadekvatno zaštićeni resursi v
Analiza Šapićeve aplikacije Beograd Plus

Threaded Mode
Analiza Šapićeve aplikacije Beograd Plus
milos_rs Offline
Super Moderator
******
Posts: 415
Threads: 108
Joined: Sep 2022
Reputation: 294
#1
07-13-2023, 08:04 AM (This post was last modified: 07-13-2023, 08:04 AM by milos_rs.)
Izvor https://reddit.com/r/koderi/comments/14x...grad_plus/


Quote:Još par zanimljivosti: ticketing.rs tj. zeljkomtest.ticketing.rs nema firewall, kao bazu koristi MySQL 5.6.49-89.0-log, ima neki API na http://ticketing.rs:7000, a ima i NFSv4 share koji se može montirati bez restrikcija. Doduše, tu nema ništa interesantno, osim toga što je world-writeable pa se možda može zloupotrebiti za DoS
Find
Reply
1van Offline
Posting Freak
*****
Posts: 1,728
Threads: 664
Joined: Sep 2022
Reputation: 126
#2
07-13-2023, 11:05 AM
Deo iz koda:

[Image: attachment.php?aid=978]

Btw, jel pogledao neko saobracaj gde sve ide?


Attached Files Image(s)
   
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Website Find
Reply
milos_rs Offline
Super Moderator
******
Posts: 415
Threads: 108
Joined: Sep 2022
Reputation: 294
#3
10-24-2023, 08:08 AM
sa reddita...

   
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)