header-logo
Suggest Exploit
vendor:
phpWCMS
by:
Unknown
5.5
CVSS
MEDIUM
Remote File-Include
Unknown
CWE
Product Name: phpWCMS
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: phpWCMS
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

phpWCMS Multiple Remote File-Include Vulnerabilities

phpWCMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to obtain sensitive information that may help with further attacks on the affected computer.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/15436/info
 
phpWCMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input.
 
An attacker may leverage these issues to obtain sensitive information that may help with further attacks on the affected computer. 

http://www.example.com/phpwcms/img/random_image.php?imgdir=../../../etc/

Navigation

Suggest Exploit

Services By CQR