Develooping Flash Chat adminips.php banned_file Variable Remote File Inclusion

2006-06-16T22:11:42
ID OSVDB:27500
Type osvdb
Reporter OSVDB
Modified 2006-06-16T22:11:42

Description

Solution Description

The vulnerability reported is incorrect. No solution required.

Manual Testing Notes

http://[target]/path/chat/adminips.php?banned_file=CmdShell

References:

Vendor URL: http://www.develooping.com/site/chat/index.php Mail List Post: http://attrition.org/pipermail/vim/2007-February/001321.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0317.html ISS X-Force ID: 27233 CVE-2006-7011 Bugtraq ID: 18480