1 http://www.example.com/cgi/food_db/db.cgi?
db=default&uid=default&Category=Sandwiches&Subcategory=Sandwiche
s&Product=Chicken%20and
%20Bacon&Soup_size=&Drinks_milk_type=&ww=on&view_records=yeswhich gave me all the information I needed to play around.
The other problem of allowing folders to be listed is that search engines will
index your information, allowing anyone to use Google as a hacking tool.
As servers create a page with a title and a headline of the folder name,
these are indexed by Google.
Yo u c o u l d search for, say, “index of /ebooks” to find electronic books online
or “index of /photos” to find photos. To see search tests such as this one,
check out the Google a Dream Come True article, which listed many of
them in 2003(!).
By the way, this method of searching worked much better in the past: not
because people protect their servers better now, but because spammers
who offer fake pirated products realize that people do these searches and
fake it now to optimize their own websites’ search engine rankings.
Cross-Site Request Forgery
Cross-site request forgery (CSRF) exploits browsers and websites that allow
for functionality to be called without really knowing that an actual user
initiated it. Say you have a form on your website http://example.com
that works with GET and sends things to your database:
1 <form method="get" action="add_to_db.php">(^2)
(^3)