vendor:
Unknown
by:
Alkomandoz Hacker
N/A
CVSS
N/A
Remote File Include
Unknown
CWE
Product Name: Unknown
Affected Version From: bif3-0.4.1
Affected Version To: bif3-0.4.1
Patch Exists: NO
Related CWE:
CPE: Unknown
Platforms Tested: Unknown
2007
bif3-0.4.1 <= Remote File Include Vulnerability
This vulnerability allows remote attackers to include arbitrary files via a crafted request to the Base/Application.php, Widgets/Base/Footer.php, Widgets/Base/widget.BifContainer.php, Widgets/Base/widget.BifRoot.php, Widgets/Base/widget.BifRoot2.php, Widgets/Base/widget.BifRoot3.php, or Widgets/Base/widget.BifWarning.php script.
Mitigation:
Unknown