Re: setting a cookie on login

Try username = "../../../../../../../../dev/random" =)

-Waswas

Comment on Re: setting a cookie on login

Replies are listed 'Best First'.
Re: Re: setting a cookie on login by ambrus (Abbot) on May 21, 2004 at 20:45 UTC
Agreed. Worse still, the username can end with a "\|". This shows that tainting mode is useful.	[reply]