I'll be the one to ask the dumb question... isn't backtick id backtick getting interpreted locally before the curl call is made, and the uid=0(root) is just their own shell interpolation? Then they're asking for /uid=0(root), and just getting a 404?
-
-
-
Just to make sure, when you say "locally" you understand they're typing that into a form on a website, so "locally" here is the remote webserver? I'm not sure what you mean by "just", because this is as bad as it gets.
- 1 more reply
New conversation -
-
-
can someone please parse the output for me?
-
anyone can easily run arbitrary code on trustico's server as root
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Oh. My. God.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
