{"html":"","image_url":null,"author_url":"https://blog.hatena.ne.jp/ThisIsOne/","blog_title":"Shikata Ga Nai","author_name":"ThisIsOne","title":"\u30d1\u30b9\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u653b\u6483\u6642\u306e\u969c\u5bb3\u3068\u30d0\u30a4\u30d1\u30b9\u624b\u6cd5\uff08\u7d9a\u7de8\uff09\uff1a\u30cd\u30b9\u30c8\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u30b7\u30fc\u30b1\u30f3\u30b9","height":"190","provider_url":"https://hatena.blog","url":"https://cysec148.hatenablog.com/entry/2025/05/14/173629","description":"Hello there, ('\u03c9')\u30ce \u2705 \u591a\u304f\u306e\u30b7\u30b9\u30c6\u30e0\u3067\u306f\u5358\u7d14\u306a../\u3092\u30d6\u30ed\u30c3\u30af\u3057\u3066\u3044\u308b \u73fe\u4ee3\u306eWeb\u30a2\u30d7\u30ea\u3084WAF\u3067\u306f ../ \u3084 ..%2f \u306e\u5358\u7d14\u306a\u30d1\u30bf\u30fc\u30f3\u306f\u691c\u51fa\uff06\u30d6\u30ed\u30c3\u30af\u3055\u308c\u308b\u30b1\u30fc\u30b9\u304c\u5897\u3048\u3066\u3044\u307e\u3059\u3002 \ud83c\udfaf \u3057\u304b\u3057\u653b\u6483\u8005\u306f\u300c\u30cd\u30b9\u30c8\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u300d\u3067\u56de\u907f\u3092\u72d9\u3046 \u2705 \u30cd\u30b9\u30c8\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u3068\u306f\uff1f \u8907\u6570\u306e.\u3084/,\\\u3092\u7d44\u307f\u5408\u308f\u305b\u3066\u3042\u3048\u3066\u66d6\u6627\u306a\u6587\u5b57\u5217\u3092\u4f5c\u308a\u3001 \u30b5\u30fc\u30d0\u30fc\u5074\u306e\u30d5\u30a3\u30eb\u30bf\u30fc\u3084\u6b63\u898f\u5316\u51e6\u7406\u306e\u7518\u3055\u3092\u7a81\u304f\u30c6\u30af\u30cb\u30c3\u30af\u3067\u3059\u3002 \ud83d\udcda \u4ee3\u8868\u7684\u306a\u4f8b ....//etc/passwd ....\\/etc/passwd ..../\\../etc/passwd ....%2fetc/passwd \u2705 \u653b\u6483\u306e\u4ed5\u7d44\u307f\uff1a \u30b5\u2026","provider_name":"Hatena Blog","categories":["Web Security Academy","Path traversal"],"published":"2025-05-14 17:36:29","blog_url":"https://cysec148.hatenablog.com/","type":"rich","version":"1.0","width":"100%"}