python input vulnerability

python input vulnerability



hi guys today i will show you how little mistake in write code can lead to expose data or RCE on sever .
as we know python has function that take input from user can save it in variable .
in python 2.x version we find input function   and it built-in function input in module __builtin__ 
let check what mean this method by using help(input)
it 's  equivalent to eval(raw_input)
ok raw_input it's another function take input from user but in input function it's add eval as we know eval it  function evaluates a string of text which is passed as its parameter, accepting possible second argument for the global values to use during evaluation.
let make quick demo 


 and if we enter number it will display it but what if we enter 2+4 it will display 6 because it's use eval as part of input function as we see above from here we can use  __builtin__  module to get 


 some RCE can get shell in box 




input vulnerability it'not stop here but they have ability to read value like you system connect to database can when user enter password it will compare it with  password store in database
assume database select query store in  db_user and user enter this db_user  it will read real value came from database and can bypass login without knowing real password .

as we see little mistake can lead to big problem 



Comments

  1. UpenderJune 20, 2018 at 11:37 PM

    This comment has been removed by the author.

    ReplyDelete
  2. UnknownJune 22, 2018 at 9:11 PM

    thank you for sharing wonderful information
    python training in Hyderabad the best career

    ReplyDelete
  3. assJuly 16, 2018 at 11:58 AM

    thanks. good info

    ReplyDelete
  4. UnknownJuly 31, 2018 at 2:07 AM

    Awesome work! That is quite appreciated. I hope you’ll get more success.
    Python Training in Chennai | Python Training Institute in Chennai

    ReplyDelete
  5. janathanOctober 19, 2019 at 10:16 PM

    good work
    foreach loop in node js
    ywy cable
    javascript integer max value
    adder and subtractor using op amp
    "c program to find frequency of a word in a string"
    on selling an article for rs 1020, a merchant loses 15%. for how much price should he sell the article to gain 12% on it ?
    paramatrix interview questions
    why you consider yourself suitable for the position applied for

    ReplyDelete
  6. VijaykumarNovember 4, 2019 at 10:14 PM

    nice..
    Inplant Training in Chennai
    Iot Internship
    Internship in Chennai for CSE
    Internship in Chennai
    Python Internship in Chennai
    Implant Training in Chennai
    Android Training in Chennai
    R Programming Training in Chennai
    Python Internship
    Internship in chennai for EEE

    ReplyDelete
  7. saishreeNovember 5, 2019 at 9:29 PM

    great blog.
    Acceptance is to offer what a lighted
    A reduction of 20 in the price of salt
    Power bi resumes
    Qdxm:sfyn::uioz:?
    If 10^0.3010 = 2, then find the value of log0.125 (125) ?
    A dishonest dealer professes to sell his goods at cost price but still gets 20% profit by using a false weight. what weight does he substitute for a kilogram?
    Oops concepts in c# pdf
    Resume for bca freshers
    Attempt by security transparent method 'webmatrix.webdata.preapplicationstartcode.start()' to access security critical method 'system.web.webpages.razor.webpagerazorhost.addglobalimport(system.string)' failed.
    Node js foreach loop

    ReplyDelete
  8. sanashreeNovember 13, 2019 at 1:31 AM

    nice blog.
    Internship for mba
    Internships in chennai for cse students
    Robotics training
    Ccna certification in chennai
    Industrial training for diploma ece students in hyderabad
    Internship certificate for bba student
    Internships in bangalore for ece
    Internship
    Inplant training report
    Internship in coimbatore for eee

    ReplyDelete
  9. rajuDecember 28, 2019 at 3:46 AM

    very nice post........!!
    poland web hosting
    russian federation web hosting
    slovakia web hosting
    spain web hosting
    suriname
    syria web hosting
    united kingdom
    united kingdom shared web hosting
    zambia web hosting
    inplant training in chennai













    ReplyDelete
  10. ArunvijayApril 20, 2020 at 10:13 PM

    nice useful post...

    Intern Ship In Chennai
    Inplant Training In Chennai
    Internship For CSE Students
    Online Internships
    Coronavirus Update
    Internship For MBA Students
    ITO Internship

    ReplyDelete
  11. Quadsel SystemsMay 25, 2020 at 1:50 AM

    Pretty article! I found some useful information in your blog....

    so here we provide,

    We provide you with flexible services and complete hybrid network solutions. It can provide your organisation with exceptional data speeds, advanced external security protection, and high-resilience by leveraging the latest SD-WAN and networking technologies to monitor, manage and strengthening your organisation’s existing network devices.

    https://www.quadsel.in/networking/>
    https://twitter.com/quadsel/
    https://www.linkedin.com/company/quadsel-systems-private-limited/
    https://www.facebook.com/quadselsystems/

    #quadsel #network #security #technologies #managedservices #Infrastructure #Networking #OnsiteResources #ServiceDeskSupport #StorageServices #WarrantyAMCServices #datacentersolutions #DataCenterBuild #EWaste #InfraConsolidation #DisasterRecovery #NetworkingServices #ImagingServices #MPS #Consulting #WANOptimisation #enduserservices

    ReplyDelete
  12. nivaAugust 23, 2020 at 3:04 AM

    Python is a general-purpose coding language—which means that, unlike HTML, CSS, and JavaScript, it can be used for other types of programming and software development besides web development.

    https://www.kaashivinfotech.com/best-final-year-project-in-information-technology

    ReplyDelete

Post a Comment

Popular posts from this blog

SECURECODE: 1 : OSWE Prep

Image
 SECURECODE: 1 : OSWE Prep SECURECODE: 1  it's OSWE Like machine which need to do some code reviwing and detect  vulnerabilities and chained together to gain final target which remote code execution (RCE).  VM:  SecureCode: 1 ~ VulnHub information about VM:  SecureCode1: an OSWE-like Machine | by Ahmed ElTijani | SUDOROOT | Medium   First we do some code review to detect vulnerabilities in source code  applications  http://192.168.122.112/source_code.zip. we go page under construction next we going to review directory structure. open http://192.168.122.112/login/index.php will redirect to login page. next will explore sql database dump which includes database structure and tables names which will help us to build queries to dump credentials from database. next will  import these sql databases backup in mysql  in order to  explore sql statment for this will use online solution  MySQL online - Test SQL queries (extendsclass.com)   which give up ability to interacting with databases.
Read more

hacky holidays h1 CTF

Image
hacky holidays  h1 CTF this year Hackerone hosted CTF it's amazing CTF i will   write write up for  interesting challenges  Swag Shop Get your Grinch Merch! Try and find a way to pull the Grinch's personal details from the online shop this challenge it's 100% real life which in order to get flag we must enumeration grinch profile. first we must enumeration target page and do some spider pages by using burpsuite spider     after spider target you notice api   endpoints that use in application we must FUZZ endpoint to find hidden endpoints using burpsuite intruder or any tools you  like.   you notice user  endpoint status code and response message  and sessions endpoint which response with  JWT Tokens  which will going to decode it and find information using  jwt io .  after decode jwt tokens we find one has user name value          now back to user endpoint which we need  fuzz parameters using burpsuite intruder. we notice we have different status code & response length
Read more