Opensurveypilot administration/user/lib/group.inc.php Multiple Variable Remote File Inclusion

2007-04-18T09:19:08
ID OSVDB:35022
Type osvdb
Reporter OSVDB
Modified 2007-04-18T09:19:08

Description

Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).

Manual Testing Notes

/opensurveypilot/administration/user/lib/group.inc.php?cfgPathToProjectAdmin=Shell

References:

Vendor Specific News/Changelog Entry: http://osp.cvs.sourceforge.net/osp/osp12/administration/user/lib/group.inc.php?revision=1.1.1.1&view=markup Secunia Advisory ID:24915 ISS X-Force ID: 33749 Generic Exploit URL: http://www.milw0rm.com/exploits/3765 FrSIRT Advisory: ADV-2007-1460 CVE-2007-2166 Bugtraq ID: 23563