What is WebDNA

WebDNA is a scripting and database system designed to easily build web applications.

WebDNA and BioType

BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5

Download WebDNA

Download WebDNA freeware, try it and register later if you want.

WebDNA resources

The list of all WebDNA instructions.
WebDNA
Software Corporation
Search WebDNA Site
 Menu


HOME


DOWNLOADS


LEARN


EDUCATION


NEWS


COMMUNITY


STORE


SUPPORT


CONTACT

Re: [WebDNA] path traversal

This WebDNA talk-list message is from

2020


It keeps the original formatting.
numero = 115086
interpreted = N
texte = 2715 Done and work great. just a restart of the WebDNA and done :-) tnx. Yours, Yariv > On 14 Apr 2020, at 12:42, talk@webdna.us wrote: >=20 > The path/folder name is specified in the prefs file. I have never = tried but I guess you could put a ^ in front of ShoppingCarts and see = what happens.=20 >=20 > Regards > Stuart Tremain >=20 > Pharoah Lane Software > Suite 16, 20 Burlington Street > Crows Nest NSW 2065 > AUSTRALIA > +612 8971 4431 >=20 >> On 14 Apr 2020, at 5:56 pm, talk@webdna.us wrote: >>=20 >> =EF=BB=BFA security friend told me about "path traversal=E2=80=9D=20 >> https://portswigger.net/web-security/file-path-traversal >>=20 >> and told me that the idea that the =E2=80=9CShoppingCarts=E2=80=9D = folder is located usually under a website folder is not a good practice. >> How do i move the creation of files from the directory under the = website forlder to be under the Globals so it=E2=80=99ll be protected = from such kind of attack ? >>=20 >> I made such directory elsewhere but didn=E2=80=99t know how to make = WebDNA use it ? >>=20 >> I use CentOS 7 and=20 >>=20 >> Yours, >>=20 >> Yariv--------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list talk@webdna.us >> To unsubscribe, E-mail to: talk-leave@webdna.us >> archives: http://www.webdna.us/page.dna?numero=3D55 >> Bug Reporting: support@webdna.us > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list talk@webdna.us > To unsubscribe, E-mail to: talk-leave@webdna.us > archives: http://www.webdna.us/page.dna?numero=3D55 > Bug Reporting: support@webdna.us --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list talk@webdna.us To unsubscribe, E-mail to: talk-leave@webdna.us archives: http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: support@webdna.us . Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] path traversal (Donovan Brooke 2020)
  2. Re: [WebDNA] path traversal (Office 2020)
  3. Re: [WebDNA] path traversal (Office 2020)
  4. Re: [WebDNA] path traversal (Stuart Tremain 2020)
  5. Re: [WebDNA] path traversal (Stuart Tremain 2020)
  6. Re: [WebDNA] path traversal (Donovan Brooke 2020)
  7. [WebDNA] path traversal (Yariv Nachshon 2020)
2715 Done and work great. just a restart of the WebDNA and done :-) tnx. Yours, Yariv > On 14 Apr 2020, at 12:42, talk@webdna.us wrote: >=20 > The path/folder name is specified in the prefs file. I have never = tried but I guess you could put a ^ in front of ShoppingCarts and see = what happens.=20 >=20 > Regards > Stuart Tremain >=20 > Pharoah Lane Software > Suite 16, 20 Burlington Street > Crows Nest NSW 2065 > AUSTRALIA > +612 8971 4431 >=20 >> On 14 Apr 2020, at 5:56 pm, talk@webdna.us wrote: >>=20 >> =EF=BB=BFA security friend told me about "path traversal=E2=80=9D=20 >> https://portswigger.net/web-security/file-path-traversal >>=20 >> and told me that the idea that the =E2=80=9CShoppingCarts=E2=80=9D = folder is located usually under a website folder is not a good practice. >> How do i move the creation of files from the directory under the = website forlder to be under the Globals so it=E2=80=99ll be protected = from such kind of attack ? >>=20 >> I made such directory elsewhere but didn=E2=80=99t know how to make = WebDNA use it ? >>=20 >> I use CentOS 7 and=20 >>=20 >> Yours, >>=20 >> Yariv--------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list talk@webdna.us >> To unsubscribe, E-mail to: talk-leave@webdna.us >> archives: http://www.webdna.us/page.dna?numero=3D55 >> Bug Reporting: support@webdna.us > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list talk@webdna.us > To unsubscribe, E-mail to: talk-leave@webdna.us > archives: http://www.webdna.us/page.dna?numero=3D55 > Bug Reporting: support@webdna.us --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list talk@webdna.us To unsubscribe, E-mail to: talk-leave@webdna.us archives: http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: support@webdna.us . Office

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Design Help Needed (1998) cookie length (1998) Help name our technology! (1997) creator code (1997) WebCat2b14MacPlugIn - [include] doesn't hide the search string (1997) PCS Frames (1997) Looping Search Results - Duh! (2000) [listfiles] (2004) 2 databases (1997) Re2: AAgghh!! Help, please. SSL strikes again. (1997) Frames and WebCat (1997) Virtual hosting and webcatNT (1997) Help name our technology! (1997) Help formatting search results w/ table (1997) Multiple prices (1997) Upgrading to 4.0 (2000) Buying sans cart (1997) [WebDNA] Euca Forum Update (2012) Resume Catalog ? (1997) Make sure I understand this??? (1997)